Critical firewall vulnerability discovered - act now!

A serious vulnerability (CVE Score 8.2) has been found in SonicWall firewalls with SSL VPN or SSH management enabled. This vulnerability can be actively exploited and requires an urgent update to the latest firmware, which will be available on January 7, 2025. This upgrade will also help with other, less critical vulnerabilities.

⚠️ SSL VPN particularly at risk ⚠️

Customers with an active SSL VPN should install the update immediately to prevent possible attacks.

✅ Recommended firmware versions ✅

• Gen 6 / 6.5 hardware: SonicOS 6.5.5.1-6n or newer (SonicWall NSA 2600, 3600, 4600, 5600, 6600; SonicWall TZ 300, TZ 400, TZ 500, TZ 600, TZ 700)
• Gen 6 / 6.5 NSv: SonicOS 6.5.4.v-21s-RC2457 or newer (SonicWall NSa 2650, 3650, 4650, 5650; SonicWall NSv 50, NSv 100)
• Gen 7: SonicOS 7.0.1-5165 or higher; 7.1.3-7015 or higher (SonicWall NSa 2700, 3700, 4700, 5700, 6700; SonicWall TZ 300, TZ 400, TZ 500, TZ 600, TZ 700)
• TZ80: SonicOS 8.0.0-8037 or newer

❗Note on EOS devices❗

Products with End-of-Support (EOS) no longer receive updates. You can find more information about EOS in our store or in the SonicWall product lifecycle table.

Stay safe and update immediately! Contact us to request the latest SonicWall firmware.