[Vulnerability Alert] Critical Security Vulnerability in SonicWall SMA100 SSLVPN (CVE-2025-32819)
publish date :
2025-05-12
update date :
2025-05-12
Source: Ministry of education information & communication security contingency platform
| Publication Number | TACERT-ANA-2025050901052727 | Publication Time | 2025/05/09 13:15 |
| Incident Type | ANA-Vulnerability Alert | Discovery Time | 2025/05/09 13:15 |
| Impact Level | Low | ||
| [Subject] [Vulnerability Alert] Critical Security Vulnerability in SonicWall SMA100 SSLVPN (CVE-2025-32819) |
|||
| [Content] Forwarded from TWCERTCC-200-202505-00000004 SonicWall has disclosed a critical vulnerability (CVE-2025-32819, CVSS: 8.8) affecting its SMA100 series products. The flaw allows remote attackers with SSLVPN user privileges to bypass path traversal protections and delete arbitrary system files. Information Sharing Level: WHITE (Information content can be publicly disclosed) |
|||
| [Affected Platform] SonicWall SMA 100 series devices (SMA 200, 210, 400, 410, 500v) running versions 10.2.1.14-75sv and earlier |
|||
| [Recommended Actions] Update SMA 100 series products to version 10.2.1.15-81sv or later |
|||
| [Reference] https://www.twcert.org.tw/tw/cp-169-10100-75927-1.html |
|||
(This notification is for informational purposes only and does not constitute a cybersecurity incident).
If you have questions or suggestions regarding this notification, please feel free to contact us.
Ministry of education information & communication security contingency platform
Website: https://info.cert.tanet.edu.tw/
Phone: +886-7-5250211
Internet Phone: 98400000
E-Mail: service@cert.tanet.edu.tw
If you have questions or suggestions regarding this notification, please feel free to contact us.
Ministry of education information & communication security contingency platform
Website: https://info.cert.tanet.edu.tw/
Phone: +886-7-5250211
Internet Phone: 98400000
E-Mail: service@cert.tanet.edu.tw
Organizer:
Computer Center
