← ExploitWatch
HomeExploited Vulnerabilities

CVE-2025-23006 — Actively Exploited: SMA1000 Appliances (SonicWall)

SonicWall SMA1000 Appliance Management Console (AMC) and Central Management Console (CMC) contain a deserialization of untrusted data vulnerability, which can enable a remote, unauthenticated attacker to execute arbitrary OS commands.

CVE IDCVE-2025-23006
VendorSonicWall
ProductSMA1000 Appliances
Vulnerability nameSonicWall SMA1000 Appliances Deserialization Vulnerability
Date added2025-01-24
Remediation due2025-02-14
Known ransomware useKnown
Required actionApply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
DescriptionSonicWall SMA1000 Appliance Management Console (AMC) and Central Management Console (CMC) contain a deserialization of untrusted data vulnerability, which can enable a remote, unauthenticated attacker to execute arbitrary OS commands.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →