CVE-2025-40601 | THREATINT

Description

A Stack-based buffer overflow vulnerability in the SonicOS SSLVPN service allows a remote unauthenticated attacker to cause Denial of Service (DoS), which could cause an impacted firewall to crash.

PUBLISHED Reserved 2025-04-16 | Published 2025-11-20 | Updated 2025-11-20 | Assigner sonicwall

Problem types

CWE-121 Stack-based Buffer Overflow

Product status

Default status

unknown

7.3.0-7012 and older versions

affected

8.0.2-8011 and older versions

affected

Credits

Saikiran Madugula of SonicWall finder

References

psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0016 vendor-advisory

cve.org (CVE-2025-40601)

nvd.nist.gov (CVE-2025-40601)

Download JSON