Ethical Hacking News
SonicWall has disclosed a new vulnerability that could allow hackers to crash its firewalls by triggering a Denial of Service (DoS) attack on affected systems. Users with impacted Gen7 hardware firewalls are urged to patch the issue immediately and consider upgrading their security software for Email Security appliances.
A vulnerability (CVE-2025-40601) has been discovered in SonicWall's high-end firewalls, allowing attackers to crash vulnerable systems.The vulnerability allows unauthenticated attackers to trigger a Denial of Service (DoS), potentially crashing an impacted firewall entirely.SonicWall recommends patching the issue immediately for affected Gen7 hardware and virtual firewalls.Gen6 firewalls are not vulnerable, but users are advised to apply the guidance outlined in SonicWall's security advisory to minimize potential risks.Patches have been announced for two vulnerabilities impacting Email Security appliances (CVE-2025-40604 and CVE-2025-40605).Network defenders are advised to take proactive steps to secure their systems and implement best practices to minimize potential vulnerabilities.
In a worrying development for network defenders, a new vulnerability has been discovered in SonicWall's high-end firewalls, allowing attackers to deliberately crash vulnerable systems. The vulnerability, tracked as CVE-2025-40601, is attributed to a stack-based buffer overflow impacting Gen8 and Gen7 (hardware and virtual) firewalls.
According to SonicWall, the vulnerability allows an unauthenticated attacker to trigger a Denial of Service (DoS), potentially crashing an impacted firewall entirely. The impact of this vulnerability could be significant for businesses that rely on their firewalls for security and protection.
In its latest security advisory, SonicWall urged customers with affected Gen7 hardware firewalls to patch the issue immediately. Affected platforms include various models of TZ series and NSa series firewalls, as well as virtual firewalls run on different operating systems such as ESX, KVM, HYPER-V, AWS, Azure.
The company also noted that its Gen6 firewalls are not vulnerable to this particular exploit but recommended applying the guidance outlined in today's security advisory for all SonicWall firewall platforms to minimize potential risks. The affected platforms have received firmware updates addressing the vulnerability; users with impacted systems should apply these updates at their earliest convenience.
SonicWall also announced patches for two vulnerabilities impacting its Email Security appliances, which enable remote attackers to execute arbitrary code execution (CVE-2025-40604) and access restricted information (CVE-2025-40605). Users of the affected Email Security products (ES Appliance 5000, 5050, 7000, 7050, 9000, VMWare, and Hyper-V) are strongly advised to upgrade their software as soon as possible.
This latest vulnerability in a high-end firewall manufacturer is part of an increasing trend of cyber threats targeting enterprise security systems. As more companies move their critical infrastructure online, these attacks will likely continue to intensify, making robust cybersecurity measures evermore essential.
While SonicWall has stated that it has yet to find any evidence of active exploitation for this specific vulnerability in the wild, the threat posed by such a DoS is significant enough to warrant immediate attention. Network defenders are advised to take proactive steps in securing their systems and implementing best practices to minimize potential vulnerabilities.
With attacks becoming increasingly sophisticated and frequent, security firms must continually stay on top of emerging threats to safeguard networks. In this case, SonicWall's swift response and public disclosure offer a silver lining for companies with vulnerable firewalls. However, the situation underscores the need for ongoing vigilance in cybersecurity to counter such high-stakes cyber threats.
Related Information:
https://www.ethicalhackingnews.com/articles/New-SonicWall-Vulnerability-Leaves-Firewalls-Crashing-Under-Attack-ehn.shtml
https://www.bleepingcomputer.com/news/security/new-sonicwall-sonicos-flaw-allows-hackers-to-crash-firewalls/
https://nvd.nist.gov/vuln/detail/CVE-2025-40601
https://www.cvedetails.com/cve/CVE-2025-40601/
https://nvd.nist.gov/vuln/detail/CVE-2025-40604
https://www.cvedetails.com/cve/CVE-2025-40604/
https://nvd.nist.gov/vuln/detail/CVE-2025-40605
https://www.cvedetails.com/cve/CVE-2025-40605/
Published: Thu Nov 20 10:13:52 2025 by llama3.2 3B Q4_K_M
