CVE-2024-53704 Sonicwall — Exploit & Vulnerability Details CRITICAL

Parameter	Value
CVSS	9.8 (CRITICAL)
Affected Versions	7.1.1-7040 — 7.1.1-7058
Type	CWE-287 (Improper Authentication)
Vendor	Sonicwall
Public PoC	Yes

An Improper Authentication vulnerability in the SSLVPN authentication mechanism allows a remote attacker to bypass authentication.

Attack Parameters

Attack Vector

Network

Can be exploited remotely

Attack Complexity

Low

Easy to exploit

Privileges Required

None

No privileges needed

User Interaction

None

No user interaction needed

Impact Assessment

Confidentiality

High

Complete data leak

Integrity

High

Complete data modification

Availability

High

Complete denial of service

CVSS Vector v3.1

Weakness Type (CWE)

CWE-287 Improper Authentication

Vulnerable Products 26

Configuration	From (including)	Up to (excluding)
Sonicwall Sonicos cpe:2.3:o:sonicwall:sonicos::::::::	`7.1.1-7040`	`<= 7.1.1-7058`
Sonicwall Sonicos cpe:2.3:o:sonicwall:sonicos:7.1.2-7019:::::::*	—	—
Sonicwall Nsa_2700 cpe:2.3:h:sonicwall:nsa_2700:-:::::::*	—	—
Sonicwall Nsa_3700 cpe:2.3:h:sonicwall:nsa_3700:-:::::::*	—	—
Sonicwall Nsa_4700 cpe:2.3:h:sonicwall:nsa_4700:-:::::::*	—	—
Sonicwall Nsa_5700 cpe:2.3:h:sonicwall:nsa_5700:-:::::::*	—	—
Sonicwall Nsa_6700 cpe:2.3:h:sonicwall:nsa_6700:-:::::::*	—	—
Sonicwall Nssp_10700 cpe:2.3:h:sonicwall:nssp_10700:-:::::::*	—	—
Sonicwall Nssp_11700 cpe:2.3:h:sonicwall:nssp_11700:-:::::::*	—	—
Sonicwall Nssp_13700 cpe:2.3:h:sonicwall:nssp_13700:-:::::::*	—	—
Sonicwall Nssp_15700 cpe:2.3:h:sonicwall:nssp_15700:-:::::::*	—	—
Sonicwall Nsv_270 cpe:2.3:h:sonicwall:nsv_270:-:::::::*	—	—
Sonicwall Nsv_470 cpe:2.3:h:sonicwall:nsv_470:-:::::::*	—	—
Sonicwall Nsv_870 cpe:2.3:h:sonicwall:nsv_870:-:::::::*	—	—
Sonicwall Tz270 cpe:2.3:h:sonicwall:tz270:-:::::::*	—	—
Sonicwall Tz270w cpe:2.3:h:sonicwall:tz270w:-:::::::*	—	—
Sonicwall Tz370 cpe:2.3:h:sonicwall:tz370:-:::::::*	—	—
Sonicwall Tz370w cpe:2.3:h:sonicwall:tz370w:-:::::::*	—	—
Sonicwall Tz470 cpe:2.3:h:sonicwall:tz470:-:::::::*	—	—
Sonicwall Tz470w cpe:2.3:h:sonicwall:tz470w:-:::::::*	—	—
Sonicwall Tz570 cpe:2.3:h:sonicwall:tz570:-:::::::*	—	—
Sonicwall Tz570p cpe:2.3:h:sonicwall:tz570p:-:::::::*	—	—
Sonicwall Tz570w cpe:2.3:h:sonicwall:tz570w:-:::::::*	—	—
Sonicwall Tz670 cpe:2.3:h:sonicwall:tz670:-:::::::*	—	—
Sonicwall Sonicos cpe:2.3:o:sonicwall:sonicos:8.0.0-8035:::::::*	—	—
Sonicwall Tz80 cpe:2.3:h:sonicwall:tz80:-:::::::*	—	—