ГлавнаяУязвимости → CVE-2024-53704
9.8критическая

CVE-2024-53704

Описание

An Improper Authentication vulnerability in the SSLVPN authentication mechanism allows a remote attacker to bypass authentication.

Затрагиваемое ПО
Sonicwall SonicosSonicwall Nsa 2700Sonicwall Nsa 3700Sonicwall Nsa 4700Sonicwall Nsa 5700Sonicwall Nsa 6700Sonicwall Nssp 10700Sonicwall Nssp 11700Sonicwall Nssp 13700Sonicwall Nssp 15700Sonicwall Nsv 270Sonicwall Nsv 470Sonicwall Nsv 870Sonicwall Tz270Sonicwall Tz270wSonicwall Tz370Sonicwall Tz370wSonicwall Tz470Sonicwall Tz470wSonicwall Tz570Sonicwall Tz570pSonicwall Tz570wSonicwall Tz670Sonicwall Tz80
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0003https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-53704