SonicWall has disclosed that two patched vulnerabilities in its SMA100 Secure Mobile Access appliances have been exploited in the wild. The identified issues are CVE-2023-44221 with a CVSS score of 7.2, allowing command injection by remote authenticated attackers, and CVE-2024-38475 with a CVSS score of 9.8, which involves improper escaping in Apache HTTP Server possibly leading to session hijacking. SonicWall has advised all users to check for unauthorized access on their SMA devices following additional analysis revealing the techniques used by attackers. The situation highlights ongoing security challenges faced by SMA devices.
SonicWall has revealed that two now-patched security flaws impacting its SMA100 Secure Mobile Access appliances have been exploited in the wild.
The vulnerabilities include CVE-2023-44221 and CVE-2024-38475, with CVSS scores of 7.2 and 9.8 respectively, affecting various SMA 100 Series devices.
SonicWall urged customers to review their SMA devices for unauthorized logins due to potentially being exploited in the wild.
An additional exploitation technique using CVE-2024-38475 may lead to session hijacking, further complicating user and network security.
Collection
[
|
...
]