Critical firewall vulnerability discovered - act now!

A serious vulnerability (CVE Score 8.2) has been found in SonicWall firewalls with SSL VPN or SSH management enabled. This vulnerability can be actively exploited and requires an urgent update to the latest firmware, which will be available on January 7, 2025. This upgrade will also help with other, less critical vulnerabilities.

❗New information

A security team has unexpectedly published an exploit proof of concept (PoC) for the vulnerability CVE-2024-53704. As a result, there is now an increased risk that attackers will exploit the vulnerability more quickly and in a more targeted manner.

To protect your system, you should take the following measures as soon as possible:

1. Install a firmware update: Update to a secure firmware version ( Gen 7 firewalls from SonicOS 7.1.3-7015 or higher; TZ80 from SonicOS 8.0.0-8037 or higher)
2. Disable SSL VPN or restrict SSL VPN access to trusted connections

You can find more detailed information in the vulnerability list.

⚠️ SSL VPN particularly at risk

Customers with an active SSL VPN should install the update immediately to prevent possible attacks.

✅ Recommended firmware versions

• Gen 6 / 6.5 hardware: SonicOS 6.5.5.1-6n or newer (SonicWall NSA 2600, 3600, 4600, 5600, 6600; SonicWall TZ 300, TZ 400, TZ 500, TZ 600, TZ 700)
• Gen 6 / 6.5 NSv: SonicOS 6.5.4.v-21s-RC2457 or newer (SonicWall NSa 2650, 3650, 4650, 5650; SonicWall NSv 50, NSv 100)
• Gen 7: SonicOS 7.0.1-5165 or higher; 7.1.3-7015 or higher (SonicWall NSa 2700, 3700, 4700, 5700, 6700; SonicWall TZ 300, TZ 400, TZ 500, TZ 600, TZ 700)
• TZ80: SonicOS 8.0.0-8037 or newer

❗Note on EOS devices

Products with End-of-Support (EOS) no longer receive updates. You can find more information about EOS in our store or in the SonicWall product lifecycle table.

Stay safe and update immediately! Contact us to request the latest SonicWall firmware.