A new security risk affects several models of the SonicWall SMA 1000 series (overview) - including central management instances. Cause for concern: A so-called SSRF vulnerability (Server Side Request Forgery) with a CVSS value of 7.2 could allow attackers to access internal systems via detours.
Recommendation: Anyone still using old firmware versions should urgently switch to the latest update (12.4.3-02925), which is already available for protection.
Alongside the new warning, there are indications of targeted attacks on outdated SMA models in the 200 and 400 series. Two known vulnerabilities, which have long since been patched, are apparently being actively exploited.
👉 To the official warning message from SonicWall
Do you need support with updating or checking your security measures? We will be happy to help you - contact us! Interested in a SonicWall project? Simply submit your request using our request form!
Also from SonicWall: How to successfully implement NIS2 for a better cyber security standard.