Urgent patch out for exploited SonicWall SMA zero-day

By on
Urgent patch out for exploited SonicWall SMA zero-day

Admin credential access and remote code execution attacks spotted.

Firewall vendor SonicWall now has a patch available to address the critical zero-day vulnerability in its SMA 100-series appliances.

The new firmware, 10.2.0.5-29sv, handles a Structured Query Language command injection vulnerability that's rated as 9.8 out of 10 on the Common Vulnerabilities Scoring System, and which security vendor NCC Group reported to SonicWall earlier this month.

An unauthenticated remote attacker can issue SQL queries to access login credentials, to obtain other session-related information, and execute arbitrary code remotely, SonicWall warned.

SonicWall SMA 200, 210, 400 and 410 physical appliances are affected by the bug, along with the SMA 500v virtual one for Microsoft Azure and HyperV, AWS and VMware ESXi.

The company has pulled vulnerable SMA 100 series 10.x images from the AWS and Azure marketplaces, and will submit updated ones as soon as possible.

SonicWall expects the approval process for resubmitting the updated images to take several weeks, but customers using Azure and AWS clouds can patch via incremental updates.

While full details of the vulnerability have not been released by SonicWall, NCC Group hinted that it is in the management interface of affected devices.

One of the NCC Group researchers who reported the bug to SonicWall suggested administrators should set up centralised logging to capture anomalous requests to the /cgi-bin/management binary from the internet, to spot attackers trying to bypass authentication.

SonicWall advises users of its products to immediately apply the patch to avoid exploitation.

A mitigation measure using the built-in Web Application Firewall (WAF) in SMA products is available, and SonicWall is adding 60 days of complimentary entitlement for registered users.

However, the mitigation does not replace the need to apply the patched firmware, SonicWall said.

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © iTnews.com.au . All rights reserved.
Tags:
firewall ncc group networking security sonicwall zeroday

Sponsored Whitepapers

Technology skill development: The strategy for building better teams
Technology skill development: The strategy for building better teams
Find unhappy users before they complain
Find unhappy users before they complain
How to reduce the risk of phishing and ransomware
How to reduce the risk of phishing and ransomware
Prevent fraud and phishing attacks with DMARC
Prevent fraud and phishing attacks with DMARC
Security awareness training strategies for account takeover protection
Security awareness training strategies for account takeover protection

Events

Most Read Articles

Services Australia shifts most Centrelink payments to SAP S/4 HANA

Services Australia shifts most Centrelink payments to SAP S/4 HANA
ACCC clears 5G as a substitute for fixed-line broadband

ACCC clears 5G as a substitute for fixed-line broadband
ANZ sets itself up for a new workforce transformation

ANZ sets itself up for a new workforce transformation
Service NSW to hire 200 engineers, designers

Service NSW to hire 200 engineers, designers

Log In

Email:
Password:
  |  Forgot your password?