Critical Vulnerability Found in SonicWall SMA 1000 Series
/ 1 min read
🔑 Critical vulnerability discovered in SonicWall SMA 1000 Series Appliances. A severe security flaw (CVE-2025-23006) has been identified in SonicWall’s Secure Mobile Access (SMA) 1000 Series, potentially allowing remote code execution due to a pre-authentication deserialization issue in the Appliance Management Console and Central Management Console. This vulnerability could enable unauthenticated attackers to execute arbitrary OS commands, compromising system integrity. SonicWall has released patches for affected versions (12.4.3-02804 and earlier) and recommends immediate upgrades. Organizations unable to patch should restrict access to trusted networks and implement security best practices, including multi-factor authentication. The Cyber Fusion Center is monitoring the situation and advising on necessary actions to mitigate risks.
