Around 178,000 SonicWall firewalls exposed about the internet are exploitable to at least one particular of the two security flaws that could be most likely exploited to bring about a denial-of-service (DoS) issue and remote code execution (RCE).
“The two issues are fundamentally the exact but exploitable at diverse HTTP URI paths thanks to reuse of a vulnerable code sample,” Jon Williams, a senior security engineer at Bishop Fox, claimed in a technological investigation shared with The Hacker News.
The vulnerabilities in concern are listed underneath –
- CVE-2022-22274 (CVSS rating: 9.4) – A stack-based mostly buffer overflow vulnerability in the SonicOS by means of HTTP request lets a remote, unauthenticated attacker to cause DoS or possibly final result in code execution in the firewall.
- CVE-2023-0656 (CVSS score: 7.5) – A stack-centered buffer overflow vulnerability in the SonicOS lets a remote, unauthenticated attacker to result in DoS, which could end result in a crash.
While there are no reports of exploitation of the flaws in the wild, a proof-of-concept (PoC) for CVE-2023-0656 was printed by the SSD Secure Disclosure group April 2023.
The cybersecurity company disclosed that the issues could be weaponized by terrible actors to set off recurring crashes and drive the appliance to get into servicing method, demanding administrative action to restore normal features.
“Maybe most astonishing was the discovery that over 146,000 publicly-accessible devices are vulnerable to a bug that was released just about two yrs ago,” Williams claimed.
The improvement comes as watchTowr Labs uncovered various stack-primarily based buffer overflow flaws in the SonicOS administration web interface and SSL VPN portal that could guide to a firewall crash.
To safeguard versus possible threats, it is encouraged to update to the previous edition and make certain that the management interface just isn’t uncovered to the internet.
Located this article exciting? Follow us on Twitter and LinkedIn to go through far more special content material we article.
Some parts of this article are sourced from:
thehackernews.com