anonhaven
Ad

CVE-2025-40601

HIGH CVSS 3.1: 7.5 EPSS 0.04%
Updated Dec 12, 2025
Sonicwall
Parameter Value
CVSS 7.5 (HIGH)
Affected Versions 7.1.1-7040 — 8.0.3-8011
Fixed In 7.3.1-7013
Type CWE-121 (Stack-based Buffer Overflow)
Vendor Sonicwall
Public PoC No

A Stack-based buffer overflow vulnerability in the SonicOS SSLVPN service allows a remote unauthenticated attacker to cause Denial of Service (DoS), which could cause an impacted firewall to crash.

Attack Parameters

Attack Vector
Network
Can be exploited remotely
Attack Complexity
Low
Easy to exploit
Privileges Required
None
No privileges needed
User Interaction
None
No user interaction needed

Impact Assessment

Confidentiality
None
No data leak
Integrity
None
No data modification
Availability
High
Complete denial of service

CVSS Vector v3.1

Weakness Type (CWE)

CWE-121 Stack-based Buffer Overflow

Vulnerable Products 34

Configuration From (including) Up to (excluding)
Sonicwall Sonicos
cpe:2.3:o:sonicwall:sonicos:*:*:*:*:*:*:*:*
 7.1.1-7040 7.3.1-7013
Sonicwall Nsa_2700
cpe:2.3:h:sonicwall:nsa_2700:-:*:*:*:*:*:*:*
Sonicwall Nsa_3700
cpe:2.3:h:sonicwall:nsa_3700:-:*:*:*:*:*:*:*
Sonicwall Nsa_4700
cpe:2.3:h:sonicwall:nsa_4700:-:*:*:*:*:*:*:*
Sonicwall Nsa_5700
cpe:2.3:h:sonicwall:nsa_5700:-:*:*:*:*:*:*:*
Sonicwall Nsa_6700
cpe:2.3:h:sonicwall:nsa_6700:-:*:*:*:*:*:*:*
Sonicwall Nssp_10700
cpe:2.3:h:sonicwall:nssp_10700:-:*:*:*:*:*:*:*
Sonicwall Nssp_11700
cpe:2.3:h:sonicwall:nssp_11700:-:*:*:*:*:*:*:*
Sonicwall Nssp_13700
cpe:2.3:h:sonicwall:nssp_13700:-:*:*:*:*:*:*:*
Sonicwall Nssp_15700
cpe:2.3:h:sonicwall:nssp_15700:-:*:*:*:*:*:*:*
Sonicwall Nsv270
cpe:2.3:h:sonicwall:nsv270:-:*:*:*:*:*:*:*
Sonicwall Nsv470
cpe:2.3:h:sonicwall:nsv470:-:*:*:*:*:*:*:*
Sonicwall Nsv870
cpe:2.3:h:sonicwall:nsv870:-:*:*:*:*:*:*:*
Sonicwall Tz270
cpe:2.3:h:sonicwall:tz270:-:*:*:*:*:*:*:*
Sonicwall Tz270w
cpe:2.3:h:sonicwall:tz270w:-:*:*:*:*:*:*:*
Sonicwall Tz370
cpe:2.3:h:sonicwall:tz370:-:*:*:*:*:*:*:*
Sonicwall Tz370w
cpe:2.3:h:sonicwall:tz370w:-:*:*:*:*:*:*:*
Sonicwall Tz470
cpe:2.3:h:sonicwall:tz470:-:*:*:*:*:*:*:*
Sonicwall Tz470w
cpe:2.3:h:sonicwall:tz470w:-:*:*:*:*:*:*:*
Sonicwall Tz570
cpe:2.3:h:sonicwall:tz570:-:*:*:*:*:*:*:*
Sonicwall Tz570p
cpe:2.3:h:sonicwall:tz570p:-:*:*:*:*:*:*:*
Sonicwall Tz570w
cpe:2.3:h:sonicwall:tz570w:-:*:*:*:*:*:*:*
Sonicwall Tz670
cpe:2.3:h:sonicwall:tz670:-:*:*:*:*:*:*:*
Sonicwall Sonicos
cpe:2.3:o:sonicwall:sonicos:*:*:*:*:*:*:*:*
 8.0.3-8011
Sonicwall Nsa_2800
cpe:2.3:h:sonicwall:nsa_2800:-:*:*:*:*:*:*:*
Sonicwall Nsa_3800
cpe:2.3:h:sonicwall:nsa_3800:-:*:*:*:*:*:*:*
Sonicwall Nsa_4800
cpe:2.3:h:sonicwall:nsa_4800:-:*:*:*:*:*:*:*
Sonicwall Nsa_5800
cpe:2.3:h:sonicwall:nsa_5800:-:*:*:*:*:*:*:*
Sonicwall Tz280
cpe:2.3:h:sonicwall:tz280:-:*:*:*:*:*:*:*
Sonicwall Tz380
cpe:2.3:h:sonicwall:tz380:-:*:*:*:*:*:*:*
Sonicwall Tz480
cpe:2.3:h:sonicwall:tz480:-:*:*:*:*:*:*:*
Sonicwall Tz580
cpe:2.3:h:sonicwall:tz580:-:*:*:*:*:*:*:*
Sonicwall Tz680
cpe:2.3:h:sonicwall:tz680:-:*:*:*:*:*:*:*
Sonicwall Tz80
cpe:2.3:h:sonicwall:tz80:-:*:*:*:*:*:*:*

References 1

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0016
PSIRT@sonicwall.com
Share Post Share Share Share

Related Vulnerabilities

CVE-2026-3439

Sonicwall

4.9

CVE-2025-40604

Sonicwall

9.8

CVE-2025-40603

Sonicwall

4.5

CVE-2025-23006

Sonicwall

9.8

CVE-2024-53704

Sonicwall

9.8