Ce mail provient de l'extérieur, restons vigilants

=====================================================================

                            CERT-Renater

                  Note d'Information No. 2025/VULN045

_____________________________________________________________________

DATE                : 23/01/2025

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Systems running SMA1000 Appliance Management
                    Console (AMC) and Central Management Console (CMC)
                    versions prior to 12.4.3-02854 (platform-hotfix).

=====================================================================
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0002
_____________________________________________________________________

SMA1000 Pre-Authentication Remote Command Execution Vulnerability

9.8

Overview

Advisory ID             SNWLID-2025-0002
First Published         2025-01-22
Last Updated            2025-01-22
Workaround              true
Status                  Applicable
CVE                     CVE-2025-23006
CWE                     CWE-502
CVSS v3                 9.8
CVSS Vector             CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Direct Link
        
Summary

Pre-authentication deserialization of untrusted data vulnerability has
been identified in the SMA1000 Appliance Management Console (AMC) and
Central Management Console (CMC), which in specific conditions could
potentially enable a remote unauthenticated attacker to execute
arbitrary OS commands.

IMPORTANT: SonicWall PSIRT has been notified of possible active
exploitation of the referenced vulnerability by threat actors. We
strongly advises users of the SMA1000 product to upgrade to the
hotfix release version to address the vulnerability.

Please note that SonicWall Firewall and SMA 100 series products are not
affected by this vulnerability.


Affected Product(s)

Version 12.4.3-02804 (platform-hotfix) and earlier versions.

CPE(s)

Workaround
To minimize the potential impact of the vulnerability, please ensure
that you restrict access to trusted sources for the Appliance
Management Console (AMC) and Central Management Console (CMC). Refer
to the SMA1000 Administration Guide, section - Best Practices for
Securing the Appliance.


Fixed Software
Version 12.4.3-02854 (platform-hotfix) and higher versions.


Comments


Credit(s)
Microsoft Threat Intelligence Center (MSTIC)


Revision History

    Version

    1.0

    Date

    22-Jan-2025

    Description

    Initial Release.


Reference(s)
        
=========================================================
+ CERT-RENATER        |    tel : 01-53-94-20-44         +
+ 23/25 Rue Daviel    |    fax : 01-53-94-20-41         +
+ 75013 Paris         |   email:cert@support.renater.fr +
=========================================================