SonicWall Potential threats included disconnection of remote employees or branches and possible attacker penetration into corporate networks
SonicWall patched vulnerabilities in SonicOS for firewall appliances discovered by Positive Technologies expert Nikita Abramov. According to IDC, SonicWall ranks fifth among manufacturers of gateway security appliance solutions worldwide.
The most serious vulnerability, CVE-2020-5135, found by Nikita Abramov at Positive Technologies and Craig Young at Tripwire, is of critical severity (CVSS v3 score 9.4). This buffer overflow vulnerability in SonicOS allows remote attackers to cause denial of service (DoS) and potentially execute arbitrary code.
Nikita Abramov researcher at Positive Technologies explained: “The tested solution uses a SSL-VPN remote access service on firewalls, and users can be disconnected from internal…
hashtags: #Positive #Technologies #Helps #Fix #Vulnerabilities #Popular #SonicWall #Firewall #Appliances
original Source link , publish date: 2020-10-26 06:14:32