惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

博客园_首页
The GitHub Blog
The GitHub Blog
美团技术团队
Know Your Adversary
Know Your Adversary
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
The Register - Security
The Register - Security
Stack Overflow Blog
Stack Overflow Blog
Attack and Defense Labs
Attack and Defense Labs
G
Google Developers Blog
I
InfoQ
博客园 - 司徒正美
T
Troy Hunt's Blog
Google DeepMind News
Google DeepMind News
J
Java Code Geeks
MongoDB | Blog
MongoDB | Blog
博客园 - 聂微东
A
About on SuperTechFans
云风的 BLOG
云风的 BLOG
S
Security Affairs
M
MIT News - Artificial intelligence
Simon Willison's Weblog
Simon Willison's Weblog
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
T
Tailwind CSS Blog
量子位
Vercel News
Vercel News
月光博客
月光博客
V
Vulnerabilities – Threatpost
N
News and Events Feed by Topic
Hugging Face - Blog
Hugging Face - Blog
酷 壳 – CoolShell
酷 壳 – CoolShell
L
LangChain Blog
D
Darknet – Hacking Tools, Hacker News & Cyber Security
L
LINUX DO - 最新话题
F
Full Disclosure
The Hacker News
The Hacker News
Hacker News: Ask HN
Hacker News: Ask HN
T
Tor Project blog
A
Arctic Wolf
Application and Cybersecurity Blog
Application and Cybersecurity Blog
Forbes - Security
Forbes - Security
IT之家
IT之家
Apple Machine Learning Research
Apple Machine Learning Research
B
Blog
Exploit-DB.com RSS Feed
Exploit-DB.com RSS Feed
Y
Y Combinator Blog
GbyAI
GbyAI
B
Blog RSS Feed
V
Visual Studio Blog
T
The Blog of Author Tim Ferriss
F
Fortinet All Blogs

Cyber Security Advisories - MS-ISAC

Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution Multiple Vulnerabilities in Adobe Products Could Allow for Arbitrary Code Execution Critical Patches Issued for Microsoft Products, July 14, 2026 Multiple Vulnerabilities in Adobe Products Could Allow for Arbitrary Code Execution Multiple Vulnerabilities in Mozilla Products Could Allow for Arbitrary Code Execution Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution A Vulnerability in PAN-OS Could Allow for Authentication Bypass Multiple Vulnerabilities in Mozilla Products Could Allow for Arbitrary Code Execution A Vulnerability in SimpleHelp Could Allow for Authentication Bypass A Vulnerability in Oracle PeopleSoft PeopleTools Could Allow for Remote Code Execution Critical Patches Issued for Microsoft Products, June 9, 2026 Multiple Vulnerabilities in Check Point Products Could Allow for Authentication Bypass Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution A Vulnerability in Cisco Products Could Allow for Server-Side Request Forgery Multiple Vulnerabilities in Mozilla Products Could Allow for Arbitrary Code Execution Multiple Vulnerabilities in NGINX Could Allow for Remote Code Execution A Vulnerability in Microsoft Exchange Server Could Allow for Arbitrary Code Execution Multiple Vulnerabilities in Fortinet Products Could Allow for Remote Code Execution Critical Patches Issued for Microsoft Products, May 12, 2026 Multiple Vulnerabilities in Apple Products Could Allow for Arbitrary Code Execution Multiple Vulnerabilities in Adobe Products Could Allow for Arbitrary Code Execution Multiple Vulnerabilities in Mozilla Products Could Allow for Arbitrary Code Execution A Vulnerability in PAN-OS Could Allow for Remote Code Execution A Vulnerability in Apache HTTP Server Could Allow for Remote Code Execution A Vulnerability in WHM cPanel and WP Squared Could Allow for Remote Code Execution Multiple Vulnerabilities in Mozilla Products Could Allow for Arbitrary Code Execution Oracle Quarterly Critical Patches Issued April 21, 2026 A Vulnerability in OpenSSH Could Allow for Authentication Bypass Multiple Vulnerabilities in Mozilla Products Could Allow for Arbitrary Code Execution Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution Critical Patches Issued for Microsoft Products, April 14, 2026 Multiple Vulnerabilities in Fortinet Products Could Allow for Arbitrary Code Execution Multiple Vulnerabilities in Adobe Products Could Allow for Arbitrary Code Execution Multiple Vulnerabilities in Mozilla Products Could Allow for Arbitrary Code Execution A Vulnerability in Fortinet FortiClientEMS Could Allow for Arbitrary Code Execution Multiple Vulnerabilities in Progress ShareFile Could Allow for Remote Code Execution Multiple Vulnerabilities in Cisco Products Could Allow for Arbitrary Code Execution Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution Multiple Vulnerabilities in Apple Products Could Allow for Privilege Escalation A Vulnerability in F5 Products Could Allow for Remote Code Execution Multiple Vulnerabilities in NetScaler ADC and NetScaler Gateway Could Allow for Memory Overread A Vulnerability in Oracle Products Could Allow for Remote Code Execution Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution Multiple Vulnerabilities in Adobe Products Could Allow for Arbitrary Code Execution Multiple Vulnerabilities in Mozilla Firefox Could Allow for Arbitrary Code Execution Critical Patches Issued for Microsoft Products, March 10, 2026 Multiple Vulnerabilities in Cisco Products Could Allow for Remote Code Execution A Vulnerability in pac4j-jwt (JwtAuthenticator) Could Allow for Authentication Bypass Multiple Vulnerabilities in Google Android OS Could Allow for Remote Code Execution Multiple Vulnerabilities in Cisco Catalyst SD-WAN Products Could Allow for Authentication Bypass A Vulnerability in Dell RecoverPoint for Virtual Machines Could Allow for Arbitrary Code Execution A Vulnerability in Google Chrome Could Allow for Arbitrary Code Execution Multiple Vulnerabilities in Fortinet Products Could Allow for Arbitrary Code Execution Multiple Vulnerabilities in Adobe Products Could Allow for Arbitrary Code Execution Multiple Vulnerabilities in Ivanti Endpoint Manager Could Allow for Authentication Bypass Critical Patches Issued for Microsoft Products, February 10, 2026 Multiple Vulnerabilities in Ivanti Endpoint Manager Mobile Could Allow for Remote Code Execution Multiple Vulnerabilities in SolarWinds Web Help Desk Could Allow for Arbitrary Code Execution A Vulnerability in Microsoft Office Could Allow for Security Feature Bypass A Vulnerability in Cisco Unified Communications Products Could Allow for Remote Code Execution Multiple Vulnerabilities in Adobe Products Could Allow for Arbitrary Code Execution Multiple Vulnerabilities in Google Chrome Could Allow for Arbitrary Code Execution Multiple Vulnerabilities in Fortinet Products Could Allow for Arbitrary Code Execution Critical Patches Issued for Microsoft Products, January 13, 2026 A Vulnerability in WatchGuard Fireware OS Could Allow for Arbitrary Code Execution. A Vulnerability in Cisco AsyncOS Could Allow for Remote Code Execution Critical Patches Issued for Microsoft Products, December 9, 2025 A Vulnerability in React Server Component (RSC) Could Allow for Remote Code Execution A Vulnerability in FortiWeb Could Allow for Remote Code Execution Critical Patches Issued for Microsoft Products, November 11, 2025
A Vulnerability in SonicOS Could Allow for Denial of Service (DoS)
2025-11-24 · via Cyber Security Advisories - MS-ISAC

MS-ISAC ADVISORY NUMBER:

2025-110

DATE(S) ISSUED:

11/24/2025

OVERVIEW:

A vulnerability has been discovered SonicOS, which could allow for Denial of Service (DoS). SonicOS is the operating system that runs on SonicWall's network security appliances, such as firewalls. Successful exploitation of this vulnerability could allow a remote unauthenticated attacker to cause Denial of Service (DoS), which could cause an impacted firewall to crash. This vulnerability ONLY impacts the SonicOS SSLVPN interface or service if enabled on the firewall.

THREAT INTELLIGENCE:

There are currently no reports of this vulnerability being exploited in the wild. 

SYSTEMS AFFECTED:

  • SonicOS 7.3.0-7012 and older versions (7.0.1 branch is not affected)
  • SonicOS 8.0.2-8011 and older versions

RISK:

Government:

Large and medium government entitiesHIGH

Small governmentMEDIUM

Businesses:

Large and medium business entitiesHIGH

Small business entitiesMEDIUM

Home Users:

LOW

TECHNICAL SUMMARY:

A vulnerability has been discovered SonicOS, which could allow for Denial of Service (DoS). Details of the vulnerability is as follows:

Tactic: Impact (TA0040):

Technique: Endpoint Denial of Service (T1499):

  • A Stack-based buffer overflow vulnerability in the SonicOS SSLVPN service allows a remote unauthenticated attacker to cause Denial of Service (DoS), which could cause an impacted firewall to crash. SonicWall PSIRT is not aware of active exploitation in the wild. No reports of a PoC have been made public and malicious use of this vulnerability has not been reported to SonicWall. This vulnerability ONLY impacts the SonicOS SSLVPN interface or service if enabled on the firewall. (CVE-2025-40601)

Successful exploitation of this vulnerability could allow a remote unauthenticated attacker to cause Denial of Service (DoS), which could cause an impacted firewall to crash.

RECOMMENDATIONS:

We recommend the following actions be taken: 

  • Apply appropriate updates provided by SonicWall to vulnerable systems immediately after appropriate testing. (M1051: Update Software)
  • Safeguard 7.1 : Establish and Maintain a Vulnerability Management Process: Establish and maintain a documented vulnerability management process for enterprise assets. Review and update documentation annually, or when significant enterprise changes occur that could impact this Safeguard.
  • Safeguard 7.2: Establish and Maintain a Remediation Process: Establish and maintain a risk-based remediation strategy documented in a remediation process, with monthly, or more frequent, reviews.
  • Safeguard 7.4: Perform Automated Application Patch Management: Perform application updates on enterprise assets through automated patch management on a monthly, or more frequent, basis.
  • Safeguard 7.5 : Perform Automated Vulnerability Scans of Internal Enterprise Assets: Perform automated vulnerability scans of internal enterprise assets on a quarterly, or more frequent, basis. Conduct both authenticated and unauthenticated scans, using a SCAP-compliant vulnerability scanning tool.
  • Safeguard 7.7: Remediate Detected Vulnerabilities: Remediate detected vulnerabilities in software through processes and tooling on a monthly, or more frequent, basis, based on the remediation process.
  • Safeguard 12.1: Ensure Network Infrastructure is Up-to-Date: Ensure network infrastructure is kept up-to-date. Example implementations include running the latest stable release of software and/or using currently supported network-as-a-service (NaaS) offerings. Review software versions monthly, or more frequently, to verify software support.
  • Safeguard 18.1: Establish and Maintain a Penetration Testing Program: Establish and maintain a penetration testing program appropriate to the size, complexity, and maturity of the enterprise. Penetration testing program characteristics include scope, such as network, web application, Application Programming Interface (API), hosted services, and physical premise controls; frequency; limitations, such as acceptable hours, and excluded attack types; point of contact information; remediation, such as how findings will be routed internally; and retrospective requirements.
  • Safeguard 18.2: Perform Periodic External Penetration Tests: Perform periodic external penetration tests based on program requirements, no less than annually. External penetration testing must include enterprise and environmental reconnaissance to detect exploitable information. Penetration testing requires specialized skills and experience and must be conducted through a qualified party. The testing may be clear box or opaque box.
  • Safeguard 18.3: Remediate Penetration Test Findings: Remediate penetration test findings based on the enterprise’s policy for remediation scope and prioritization.
  • Use network appliances to filter ingress or egress traffic and perform protocol-based filtering. Configure software on endpoints to filter network traffic. (M1037: Filter Network Traffic)
  • Safeguard 4.2 : Establish and Maintain a Secure Configuration Process for Network Infrastructure: Establish and maintain a secure configuration process for network devices. Review and update documentation annually, or when significant enterprise changes occur that could impact this Safeguard.
  • Safeguard 7.6 : Perform Automated Vulnerability Scans of Externally-Exposed Enterprise Assets: Perform automated vulnerability scans of externally-exposed enterprise assets using a SCAP-compliant vulnerability scanning tool. Perform scans on a monthly, or more frequent, basis.
  • Safeguard 7.7 : Remediate Detected Vulnerabilities: Remediate detected vulnerabilities in software through processes and tooling on a monthly, or more frequent, basis, based on the remediation process.
  • Use capabilities to detect and block conditions that may lead to or be indicative of a software exploit occurring. (M1050: Exploit Protection)
  • Safeguard 10.5: Enable Anti-Exploitation Features: Enable anti-exploitation features on enterprise assets and software, where possible, such as Microsoft® Data Execution Prevention (DEP), Windows® Defender Exploit Guard (WDEG), or Apple® System Integrity Protection (SIP) and Gatekeeper™.