Home

Description

An improper privilege management vulnerability in the SonicWall NetExtender Windows (32 and 64 bit) client allows a low privileged attacker to modify configurations.

PUBLISHED Reserved 2025-01-09 | Published 2025-04-10 | Updated 2025-04-10 | Assigner sonicwall

Problem types

CWE-250 Execution with Unnecessary Privileges

Product status

Default status
unknown

10.3.1 and earlier versions
affected

References

psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0006 vendor-advisory

cve.org (CVE-2025-23008)

nvd.nist.gov (CVE-2025-23008)

Download JSON