CVE-2024-53704 - Geek Feed

SonicWall firewall bug targeted in attacks after PoC exploit release

February 17, 2025February 17, 2025 geekfeed0Tagged Actively Exploited, Authentication Bypass, CVE-2024-53704, Firewall, SonicOS, SonicWall, SSL VPN

Attackers are now targeting an authentication bypass vulnerability affecting SonicWall firewalls shortly after the release of proof-of-concept (PoC) exploit code. This security flaw (CVE-2024-53704), tagged by CISA as critical severity and found in the SSLVPN authentication mechanism, impacts SonicOS versions 7.1.x (up to 7.1.1-7058), 7.1.2-7019, and 8.0.0-8035, used by multiple models of Gen 6 and […]

2 mins read

SonicWall firewall exploit lets hackers hijack VPN sessions, patch now

February 13, 2025February 13, 2025 geekfeed0Tagged Authentication Bypass, CVE-2024-53704, CVE-2024-53705, exploit, Exploit code, poc, Proof of Concept, SonicWall, vulnerability

Security researchers at Bishop Fox have published complete exploitation details for the CVE-2024-53704 vulnerability that allows bypassing the authentication mechanism in certain versions of the SonicOS SSLVPN application. The vendor warned about the high exploitation possibility of the flaw in a bulletin on January 7, urging administrators to upgrade their SonicOS firewalls’ firmware to address […]

3 mins read