← ExploitWatch
HomeExploited Vulnerabilities

CVE-2024-40766 — Actively Exploited: SonicOS (SonicWall)

SonicWall SonicOS contains an improper access control vulnerability that could lead to unauthorized resource access and, under certain conditions, may cause the firewall to crash.

CVE IDCVE-2024-40766
VendorSonicWall
ProductSonicOS
Vulnerability nameSonicWall SonicOS Improper Access Control Vulnerability
Date added2024-09-09
Remediation due2024-09-30
Known ransomware useKnown
Required actionApply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
DescriptionSonicWall SonicOS contains an improper access control vulnerability that could lead to unauthorized resource access and, under certain conditions, may cause the firewall to crash.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →