← ExploitWatch
HomeExploited Vulnerabilities

CVE-2024-53704 — Actively Exploited: SonicOS (SonicWall)

SonicWall SonicOS contains an improper authentication vulnerability in the SSLVPN authentication mechanism that allows a remote attacker to bypass authentication.

CVE IDCVE-2024-53704
VendorSonicWall
ProductSonicOS
Vulnerability nameSonicWall SonicOS SSLVPN Improper Authentication Vulnerability
Date added2025-02-18
Remediation due2025-03-11
Known ransomware useKnown
Required actionApply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
DescriptionSonicWall SonicOS contains an improper authentication vulnerability in the SSLVPN authentication mechanism that allows a remote attacker to bypass authentication.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →