Cybersecurity Threat Advisory: SonicWall SMA1000 vulnerability

Home / QSOL IT News / cybersecurity / Cybersecurity Threat Advisory: SonicWall SMA1000 vulnerability
Cybersecurity Threat Advisory

Cybersecurity Threat Advisory

A pre-authentication deserialization vulnerability has been discovered in SonicWall SMA1000 Appliance Management Console (AMC) and Central Management Console (CMC) and is already being used in zero-day attacks. Review the details within this Cybersecurity Threat Advisory to protect your organization.

What is the threat?

CVE-2025-23006 has a CVSS score of 9.8, enable attackers to remotely execute arbitrary OS commands. In certain conditions, it can potentially allow attackers to gain access to affected appliances.

Why is it noteworthy?

SMA1000 are secure remote access appliances used by organizations to provide VPN access for corporate networks. Given the importance of its role to protect organizations’ network, these devices are prime targets for threat actors, especially when there are unpatched vulnerabilities available to exploit.

What is the exposure or risk?

There are over 2,300 SMS1000 devices currently exposed online. CVE-2025-23006 affects only SMA1000 devices of version 12.4.3-02804 and earlier. Additionally, it does not affect firewalls or SMA100 devices, and as such no action is required for them.

What are the recommendations?

Barracuda recommends the following steps to secure your organization’s network infrastructure against this threat:

  • Update SMA1000 appliances to the current version of 12.4.3-02854 and later.
  • Restrict access to trusted sources for both the Appliance Management Console and Central Management Console.
  • Deploy intrusion detection/prevention systems (IDPs) and web application firewalls (WAFs).

References

For more in-depth analysis of the above recommendations, please visit the following links:

If you have any questions about this Cybersecurity Threat Advisory, don’t hesitate to get in touch with Barracuda Managed XDR’s Security Operations Center.

This post originally appeared on Smarter MSP.

Related Post

Tap Into the Power of a Unified Network

In today's digital landscape, businesses are increasingly reliant on a complex web of interconnected technologies. From on-premises to data centers

Business, cloud security, Customer Experience, cyber security, Digital Transformation, edge network, network fabric, network security, on, premises, QSOL Featured, Security, Syndicated

Microsoft launches $5 million AI for Good Open

New program celebrates 50 years of innovation in Washington state REDMOND, Wash. — Jan. 22, 2025 — On Wednesday, with the

AI, Artificial Intelligence, Grant program, innovation, Microsoft, Press Releases, Public Health, Syndicated, Technology, Washington state

Unlocking a new opportunity: Selling cybersecurity to schools

Managed service providers (MSPs) often overlook schools and other educational institutions, even though they present an excellent opportunity for new

Business, cybersecurity, educational institutions, Featured, K, lot, Managed Service Providers, MSP opportunity, MSPs, schools, Security, Syndicated, Technology

Tip Tuesday: Differentiate your service offerings with customization

As the managed services industry becomes more crowded, succeeding as a managed service provider (MSP) requires you to differentiate your

Better Business, Business, client consultations, client needs, cybersecurity, differentiation strategy, Featured, Managed services, MSP, Operational Efficiency, referrals, Security, Syndicated, Tip Tuesday