SonicOS 7.3.1, a maintenance release, has been released. This version is supported on Gen7 TZ, NSa, NSv and NSsp models. With this update, SonicWall not only provides important bug fixes, but also the new Credential Auditor feature.
For greater protection and transparency in the network.
Credential Auditor is a new, free integrated security feature in SonicOS 7.3.1. It automatically checks passwords by comparing them with current lists of weak or already compromised credentials. If the system detects a match, it immediately informs the administrators so that they can respond immediately. The reference file required for this is downloaded to the firewall at regular intervals. Credential Auditor thus effectively reduces the risk of insecure login credentials, easily and without additional licences.
! Note: NSM 3.3 can already manage devices with SonicOS 7.3.1. Support for Credential Auditor will be added with NSM 3.4, scheduled for December.
In addition to the new feature, SonicOS 7.3.1 also includes numerous bug fixes and closes several critical security vulnerabilities. These include the highly critical SSL VPN vulnerability affecting devices running SonicOS 7.3.0 and earlier. A detailed overview of all fixed vulnerabilities can be found in the SonicWall Vulnerability List.
SonicWall has also released updated firmware for Email Security that closes two newly discovered security vulnerabilities (affecting versions up to 10.0.33.8195).
These vulnerabilities could allow unauthorised access to system data and code. An update to 10.0.34.8215, 10.0.34.8223 or newer is recommended, although there is no active exploitation of these vulnerabilities. The latest firmware is available for download via MySonicWall or Unified Management.
