Saturday, January 25, 2025

CISA Adds SonicWall Vulnerability to KEV Catalog – 1-24-25

Yesterday, CISA announced that it had added a deserialization of untrusted data vulnerability in the SonicWall SMA1000 Appliance Management Console to their Known Exploited Vulnerability (KEV) catalog. SonicWall reported the vulnerability earlier this week. SonicWall has a new version that mitigates the vulnerability. CISA has directed all federal agencies using the SMA1000 AMC to apply “mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.” The deadline for successfully taking this action is February 14th, 2024.

No comments:

 
/* Use this with templates/template-twocol.html */