← Back to CVEs
CVE-2025-40597
HIGH7.5
Description
A Heap-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attacker to cause Denial of Service (DoS) or potentially results in code execution.
CVE Details
CVSS v3.1 Score7.5
SeverityHIGH
CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack VectorNETWORK
ComplexityLOW
Privileges RequiredNONE
User InteractionNONE
Published7/23/2025
Last Modified8/7/2025
Sourcenvd
Honeypot Sightings0
Affected Products
sonicwall:sma_210sonicwall:sma_210_firmwaresonicwall:sma_410sonicwall:sma_410_firmwaresonicwall:sma_500vsonicwall:sma_500v_firmware
Weaknesses (CWE)
CWE-122
References
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0012(PSIRT@sonicwall.com)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.