SonicWall SSLVPN Flaw: When Firewalls Decide to Take a Nap!

SonicWall is sounding the alarm on a SonicOS SSLVPN flaw that can crash Gen7 and Gen8 firewalls. This vulnerability, CVE-2025-40601, is a buffer overflow issue with a CVSS score of 7.5. SonicWall advises customers to patch ASAP unless you’re into unplanned firewall siestas.

3P
Published: November 23, 2025 11:36 amAdded: November 23, 2025 at 4:05 amAssembled by: The Editor
Pro Dashboard

Hot Take:

In an unexpected plot twist, SonicWall’s firewalls are playing a game of ‘Crash Bandicoot’ with cyber attackers. If there’s a silver lining, it’s that attackers are yet to exploit this flaw in the wild. Until then, SonicWall has entered ‘patch it like it’s hot’ mode to keep your firewalls from throwing a tantrum.

Key Points:

  • SonicWall has identified a high-severity buffer overflow flaw in SonicOS SSLVPN, tracked as CVE-2025-40601, with a CVSS score of 7.5.
  • The flaw allows for a denial-of-service (DoS) attack, leading to potential firewall crashes.
  • Impact is confined to Gen7 and Gen8 hardware and virtual firewalls with the SSLVPN interface enabled.
  • SonicWall urges immediate patching and suggests disabling SSLVPN or restricting access as interim measures.
  • No active exploitation or public PoC (Proof of Concept) reports have surfaced yet.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?