CVE-2025-23006 Sonicwall — Exploit & Vulnerability Details CRITICAL

Parameter	Value
CVSS	9.8 (CRITICAL)
Affected Versions	before 12.4.3-02854
Fixed In	12.4.3-02854
Type	CWE-502 (Deserialization of Untrusted Data)
Vendor	Sonicwall
Public PoC	Yes

Pre-authentication deserialization of untrusted data vulnerability has been identified in the SMA1000 Appliance Management Console (AMC) and Central Management Console (CMC), which in specific conditions could potentially enable a remote unauthenticated attacker to execute arbitrary OS commands.

Attack Parameters

Attack Vector

Network

Can be exploited remotely

Attack Complexity

Low

Easy to exploit

Privileges Required

None

No privileges needed

User Interaction

None

No user interaction needed

Impact Assessment

Confidentiality

High

Complete data leak

Integrity

High

Complete data modification

Availability

High

Complete denial of service

CVSS Vector v3.1

Weakness Type (CWE)

CWE-502 Deserialization of Untrusted Data

Vulnerable Products 15

Configuration	From (including)	Up to (excluding)
Sonicwall Sma8200v cpe:2.3:a:sonicwall:sma8200v::::::::	—	`12.4.3-02854`
Sonicwall Sma6200_Firmware cpe:2.3:o:sonicwall:sma6200_firmware::::::::	—	`12.4.3-02854`
Sonicwall Sma6200 cpe:2.3:h:sonicwall:sma6200:-:::::::*	—	—
Sonicwall Sma6210_Firmware cpe:2.3:o:sonicwall:sma6210_firmware::::::::	—	`12.4.3-02854`
Sonicwall Sma6210 cpe:2.3:h:sonicwall:sma6210:-:::::::*	—	—
Sonicwall Sma7200_Firmware cpe:2.3:o:sonicwall:sma7200_firmware::::::::	—	`12.4.3-02854`
Sonicwall Sma7200 cpe:2.3:h:sonicwall:sma7200:-:::::::*	—	—
Sonicwall Sma7210_Firmware cpe:2.3:o:sonicwall:sma7210_firmware::::::::	—	`12.4.3-02854`
Sonicwall Sma7210 cpe:2.3:h:sonicwall:sma7210:-:::::::*	—	—
Sonicwall Sra_Ex6000_Firmware cpe:2.3:o:sonicwall:sra_ex6000_firmware::::::::	—	`<= 12.4.3-02804`
Sonicwall Sra_Ex6000 cpe:2.3:h:sonicwall:sra_ex6000:-:::::::*	—	—
Sonicwall Sra_Ex7000_Firmware cpe:2.3:o:sonicwall:sra_ex7000_firmware::::::::	—	`<= 12.4.3-02804`
Sonicwall Sra_Ex7000 cpe:2.3:h:sonicwall:sra_ex7000:-:::::::*	—	—
Sonicwall Sra_Ex9000_Firmware cpe:2.3:o:sonicwall:sra_ex9000_firmware::::::::	—	`<= 12.4.3-02804`
Sonicwall Sra_Ex9000 cpe:2.3:h:sonicwall:sra_ex9000:-:::::::*	—	—