Urgent patch out for exploited SonicWall SMA zero-day

By on
Urgent patch out for exploited SonicWall SMA zero-day

Admin credential access and remote code execution attacks spotted.

Firewall vendor SonicWall now has a patch available to address the critical zero-day vulnerability in its SMA 100-series appliances.

The new firmware, 10.2.0.5-29sv, handles a Structured Query Language command injection vulnerability that's rated as 9.8 out of 10 on the Common Vulnerabilities Scoring System, and which security vendor NCC Group reported to SonicWall earlier this month.

An unauthenticated remote attacker can issue SQL queries to access login credentials, to obtain other session-related information, and execute arbitrary code remotely, SonicWall warned.

SonicWall SMA 200, 210, 400 and 410 physical appliances are affected by the bug, along with the SMA 500v virtual one for Microsoft Azure and HyperV, AWS and VMware ESXi.

The company has pulled vulnerable SMA 100 series 10.x images from the AWS and Azure marketplaces, and will submit updated ones as soon as possible.

SonicWall expects the approval process for resubmitting the updated images to take several weeks, but customers using Azure and AWS clouds can patch via incremental updates.

While full details of the vulnerability have not been released by SonicWall, NCC Group hinted that it is in the management interface of affected devices.

One of the NCC Group researchers who reported the bug to SonicWall suggested administrators should set up centralised logging to capture anomalous requests to the /cgi-bin/management binary from the internet, to spot attackers trying to bypass authentication.

SonicWall advises users of its products to immediately apply the patch to avoid exploitation.

A mitigation measure using the built-in Web Application Firewall (WAF) in SMA products is available, and SonicWall is adding 60 days of complimentary entitlement for registered users.

However, the mitigation does not replace the need to apply the patched firmware, SonicWall said.

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © iTnews.com.au . All rights reserved.
Tags:
firewallncc groupnetworkingsecuritysonicwallzeroday

Sponsored Whitepapers

Planning before the breach: You can’t protect what you can’t see
Planning before the breach: You can’t protect what you can’t see
Beyond FTP: Securing and Managing File Transfers
Beyond FTP: Securing and Managing File Transfers
NextGen Security Operations: A Roadmap for the Future
NextGen Security Operations: A Roadmap for the Future
Video: Watch Juniper talk about its Aston Martin partnership
Video: Watch Juniper talk about its Aston Martin partnership
Don’t pay the ransom: A three-step guide to ransomware protection
Don’t pay the ransom: A three-step guide to ransomware protection

Events

Most Read Articles

Kmart Australia stands up consent-as-a-service platform

Kmart Australia stands up consent-as-a-service platform
Telstra to open its 5G network to wholesale customers

Telstra to open its 5G network to wholesale customers
Macquarie Bank creates a broker portal on Salesforce

Macquarie Bank creates a broker portal on Salesforce
Active Directory defaults lead to no-fix PrivEsc vulnerability

Active Directory defaults lead to no-fix PrivEsc vulnerability

Digital Nation

Case Study: PlayHQ leverages graph technologies for sports administration
Case Study: PlayHQ leverages graph technologies for sports administration
As NFTs gain traction, businesses start taking early bets
As NFTs gain traction, businesses start taking early bets
COVER STORY: From cost control to customer fanatics, AI is transforming the contact centre
COVER STORY: From cost control to customer fanatics, AI is transforming the contact centre
The other ‘CTO’: The emerging role of the chief transformation officer
The other ‘CTO’: The emerging role of the chief transformation officer
Metaverse hype will transition into new business models by mid decade: Gartner
Metaverse hype will transition into new business models by mid decade: Gartner

Log In

  |  Forgot your password?