SonicWall Security Scare: Patch Now or Face Cyber Mayhem!

CISA adds two SonicWall flaws to the Known Exploited Vulnerabilities catalog the same day proof-of-concept exploit code is published. These vulnerabilities allow remote attacks, prompting urgent patch advisories. SonicWall users, update your systems before hackers channel their inner tech comedian and make your security a punchline.

3P
Published: May 5, 2025 10:02 amAdded: May 5, 2025 at 3:29 amAssembled by: The Editor
Pro Dashboard

Hot Take:

Oh, SonicWall, you’ve done it again! It seems like every year, just as the weather starts warming up, so does the security drama. Two new flaws, one catalog, and a whole lot of patching. It’s almost like a cybersecurity soap opera, with more code and fewer commercials. Grab your popcorn, folks, because this show is far from over!

Key Points:

  • SonicWall has two new vulnerabilities: CVE-2023-44221 and CVE-2024-38475.
  • CISA added these vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog.
  • The flaws can be remotely exploited to inject OS commands and map URLs to file system locations.
  • Patches for these vulnerabilities have been available since December 2023 and December 2024.
  • Federal agencies have been ordered to patch these vulnerabilities by May 22.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?