SonicWall Product Line Security Update Advisory

Dec 06 2024

Overview

An update has been released to address vulnerabilities in SonicWall Product Line. Users of the affected versions are advised to update to the latest version.

Affected Products

CVE-2024-40763, CVE-2024-45318, CVE-2024-53703

SMA 100 Series (SMA 200, 210, 400, 410, 500v) versions: ~ 10.2.1.13-72sv (inclusive)

Resolved Vulnerabilities

Heap-based buffer overflow vulnerability due to the use of strcpy in the SonicWall SMA100 SSLVPN (CVE-2024-40763)

Stack-based buffer overflow vulnerability in the SonicWall SMA100 SSLVPN web management interface (CVE-2024-45318)

Stack-based buffer overflow vulnerability in the mod_httprp library in SonicWall SMA100 SSLVPN (CVE-2024-53703)

Vulnerability Patches

Vulnerability patches have been made available in the latest update. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2024-40763, CVE-2024-45318, CVE-2024-53703

SMA 100 Series (SMA 200, 210, 400, 410, 500v) versions: 10.2.1.14-75sv or later version

Referenced Sites

[1] Vulnerability List

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0018

SonicWall Product Line Security Update Advisory

Google Chrome Browser (131.0.6778.108/.109) Security Update Advisory

Django Security Update Advisory

Tags:

Google Chrome Browser (131.0.6778.108/.109) Security Update Advisory

Django Security Update Advisory