Home

Description

A local privilege escalation vulnerability in SonicWall NetExtender Windows (32 and 64 bit) client which allows an attacker to trigger an arbitrary file deletion.

PUBLISHED Reserved 2025-01-09 | Published 2025-04-10 | Updated 2025-04-17 | Assigner sonicwall

Problem types

CWE-250 Execution with Unnecessary Privileges

Product status

Default status
unknown

10.3.1 and earlier versions
affected

References

psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0006 vendor-advisory

cve.org (CVE-2025-23009)

nvd.nist.gov (CVE-2025-23009)

Download JSON