CVE-2024-40766: SonicWall SonicOS Improper Access Control Vulnerability.
SonicWall SonicOS Improper Access Control Vulnerability. SonicWall SonicOS contains an improper access control vulnerability that could lead to unauthorized resource access and, under certain conditions, may cause the firewall to crash.
- CISA KEV-listed (remediation due 2024-09-30)
- used in ransomware campaigns
- EPSS 3.4% (87.8% percentile)