Attackers can manipulate Sonicwall SMA1000 connections
Sonicwall's 1000 series Secure Mobile Access (SMA) remote access solution is vulnerable.
(Image: Sergey Nivens/Shutterstock.com)
Attackers can redirect requests from the Sonicwall SMA1000 remote access solution. A security patch provides a remedy.
Manipulated connections
In a warning message, the network technology provider explains that attackers can redirect requests to servers they control (CVE-2025-40595 “high”) as part of a server-side request forgery (SSRF) attack.
In the context of a remote access solution, which employees are supposed to use to establish secure connections with their devices, this can have far-reaching consequences. Attacks should be possible remotely and without authentication.
Videos by heise
So far, there have been no reports of ongoing attacks. Network admins should nevertheless react promptly and install version 12.4.3-02963 (platform-hotfix) to close the gap in the appliance work-place interface.
(des)
