vulnerability:exploitability=documented vulnerability:information=PoC
Created on 2025-02-17 08:57 and updated on 2025-02-17 08:57.
Description
Threat actors started exploiting a recent SonicWall firewall vulnerability this week, shortly after proof-of-concept (PoC) code targeting it was published.
According to Bishop Fox, approximately 4,500 internet-facing SonicWall SSL VPN servers had not been patched against CVE-2024-53704 by February 7.
Associated vulnerability
CVE-2024-53704Related vulnerabilities
Meta
[ { tags: [ "vulnerability:exploitability=documented", "vulnerability:information=PoC", ], }, { ref: [ "https://www.securityweek.com/sonicwall-firewall-vulnerability-exploited-after-poc-publication", "https://bishopfox.com/blog/sonicwall-cve-2024-53704-ssl-vpn-session-hijacking", ], }, ]