CVE-2024-53704

SonicWall | SonicOSAdded 2025-02-18Remediation Deadline 2025-03-11Active Ransomware Campaign

SonicWall SonicOS SSLVPN Improper Authentication Vulnerability

SonicWall SonicOS contains an improper authentication vulnerability in the SSLVPN authentication mechanism that allows a remote attacker to bypass authentication.

Required Action

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Weakness Classification

CWE-287

References

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0003
https://nvd.nist.gov/vuln/detail/CVE-2024-53704

Cybersecurity Alerts

CVE-2024-53704

SonicWall SonicOS SSLVPN Improper Authentication Vulnerability

Required Action

Weakness Classification

References