CVE-2023-41711

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Oct 17, 2023
Updated: Oct 19, 2023
CWE ID 121
CWE ID 787

Summary

CVE-2023-41711 is a stack-based buffer overflow vulnerability discovered in SonicOS, the operating system used by SonicWall firewalls. The issue lies in the sonicwall.exp and prefs.exp URL endpoints, which can be exploited post-authentication. Successful exploitation of this vulnerability results in a firewall crash. Attackers can potentially use this issue to execute arbitrary code on the affected device, leading to significant security risks. It is essential for SonicWall users to apply the relevant patches as soon as possible to protect their networks from potential attacks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Sonicwall SonicOS

Affected Vendors

  • SonicWall Inc.