SonicWall Family Security Update Advisory
Overview
SonicWall has released a security update to fix vulnerabilities in its product line. Users of affected products are advised to update to the latest version.
Affected Products
Cve-2024-53705, cve-2024-12802, cve-2024-12803, cve-2024-12805, cve-2024-12806, cve-2024-40765
Gen6 Hardware Firewalls (SOHOW, TZ 300, TZ 300W, TZ 400, TZ 400W, TZ 500, TZ 500W, TZ 600, NSA 2650, NSA 3600, NSA 3650, NSA 4600, NSA 4650, NSA 5600, NSA 5650, NSA 6600, NSA 6650, SM 9200, SM 9250, SM 9400, SM 9450, SM 9600, SM 9650, TZ 300P, TZ 600P, SOHO 250, SOHO 250W, TZ 350, TZ 350W) versions: ~ 6.5.4.15-117n (included)
Gen7 Firewalls (TZ270, TZ270W, TZ370, TZ370W, TZ470, TZ470W, TZ570, TZ570W, TZ570P, TZ670, NSa 2700, NSa 3700,NSa 4700, NSa 5700, NSa 6700, NSsp 10700, NSsp 11700, NSsp 13700, NSsp 15700) Versions: ~ 7.0.1-5161 (incl.)
Gen7 NSv (NSv 270, NSv 470, NSv 870) version: ~7.0.1-5161 (inclusive)
CVE-2024-40762, CVE-2024-53704, CVE-2024-53705. CVE-2024-12802, CVE-2024-12803, CVE-2024-12805, CVE-2024-12806, CVE-2024-40765
Gen7 Firewalls (TZ270, TZ270W, TZ370, TZ370W, TZ470, TZ470W, TZ570, TZ570W, TZ570P, TZ670, NSa 2700, NSa 3700,NSa 4700, NSa 5700, NSa 6700, NSsp 10700, NSsp 11700, NSsp 13700, NSsp 15700) Versions: ~ 7.1.1-7058 (incl.), 7.1.2-7019
Gen7 NSv (NSv 270, NSv 470, NSv 870) Versions: ~7.1.1-7058 (inclusive), 7.1.2-7019
TZ80 version: 8.0.0-8035
CVE-2024-53706
Gen7 Cloud platform NSv (NSv 270, NSv 470, NSv 870) Versions: ~7.1.1-7058 (inclusive), 7.1.2-7019
Resolved Vulnerabilities
Vulnerability that allows an attacker to bypass multifactor authentication by exploiting an alternate account name (CVE-2024-12802)
Stack buffer overflow vulnerability in SonicOS (CVE-2024-12803)
Format String Vulnerability in SonicOS (CVE-2024-12805)
Absolute Path Traversal Vulnerability in SonicOS (CVE-2024-12806)
vulnerability using a predictable random number generator (CVE-2024-40762)
integer Buffer Overflow Vulnerability in SonicOS (CVE-2024-40765)
authentication bypass vulnerability by remote attackers (CVE-2024-53704)
server Side Request Forgery Vulnerability in the Management Interface (CVE-2024-53705)
local privilege escalation vulnerability for low-privileged users (CVE-2024-53706)
Vulnerability Patches
Vulnerability Patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.
CVE-2024-53705, CVE-2024-12802, CVE-2024-12803, CVE-2024-12805, CVE-2024-12806, CVE-2024-40765
Gen6 Hardware Firewalls (SOHOW, TZ 300, TZ 300W, TZ 400, TZ 400W, TZ 500, TZ 500W, TZ 600, NSA 2650, NSA 3600, NSA 3650, NSA 4600, NSA 4650, NSA 5600, NSA 5650, NSA 6600, NSA 6650, SM 9200, SM 9250, SM 9400, SM 9450, SM 9600, SM 9650, TZ 300P, TZ 600P, SOHO 250, SOHO 250W, TZ 350, TZ 350W) versions: 6.5.5.1-6N at least
CVE-2024-40762, CVE-2024-53704, CVE-2024-53705, CVE-2024-53706, CVE-2024-12802, CVE-2024-12803, CVE-2024-12805, CVE-2024-12806, CVE-2024-40765
Gen7 Firewalls (TZ270, TZ270W, TZ370, TZ370W, TZ470, TZ470W, TZ570, TZ570W, TZ570P, TZ670, NSa 2700, NSa 3700,NSa 4700, NSa 5700, NSa 6700, NSsp 10700, NSsp 11700, NSsp 13700, NSsp 15700) Version: 7.0.1-5165 or later, 7.1.3-7015 or later
Gen7 NSv (NSv 270, NSv 470, NSv 870) versions: 7.0.1-5165 or later, 7.1.3-7015 or later
TZ80 version: 8.0.0-8037 or at least
References
[1] Vulnerability List
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0003
[2] Vulnerability List
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0013
[3] Vulnerability List
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0001
[4] Vulnerability List
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0004