CVE-2025-40597 | THREATINT

Description

A Heap-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attacker to cause Denial of Service (DoS) or potentially results in code execution.

PUBLISHED Reserved 2025-04-16 | Published 2025-07-23 | Updated 2026-02-26 | Assigner sonicwall

Problem types

CWE-122 Heap-based Buffer Overflow

Product status

Default status

unknown

10.2.1.15-81sv and earlier versions

affected

Credits

Sina Kheirkhah finder

References

psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0012 vendor-advisory

cve.org (CVE-2025-40597)

nvd.nist.gov (CVE-2025-40597)

Download JSON