anonhaven
Ad

CVE-2025-40604

CRITICAL CVSS 3.1: 9.8 EPSS 0.02%
Updated Dec 12, 2025
Sonicwall
Parameter Value
CVSS 9.8 (CRITICAL)
Affected Versions before 10.0.33.8195
Type CWE-494
Vendor Sonicwall
Public PoC No

Download of Code Without Integrity Check Vulnerability in the SonicWall Email Security appliance loads root filesystem images without verifying signatures, allowing attackers with VMDK or datastore access to modify system files and gain persistent arbitrary code execution.

Attack Parameters

Attack Vector
Network
Can be exploited remotely
Attack Complexity
Low
Easy to exploit
Privileges Required
None
No privileges needed
User Interaction
None
No user interaction needed

Impact Assessment

Confidentiality
High
Complete data leak
Integrity
High
Complete data modification
Availability
High
Complete denial of service

CVSS Vector v3.1

Weakness Type (CWE)

CWE-494

Vulnerable Products 10

Configuration From (including) Up to (excluding)
Sonicwall Email_Security_Appliance_5000_Firmware
cpe:2.3:o:sonicwall:email_security_appliance_5000_firmware:*:*:*:*:*:*:*:*
 <= 10.0.33.8195
Sonicwall Email_Security_Appliance_5000
cpe:2.3:h:sonicwall:email_security_appliance_5000:-:*:*:*:*:*:*:*
Sonicwall Email_Security_Appliance_5050_Firmware
cpe:2.3:o:sonicwall:email_security_appliance_5050_firmware:*:*:*:*:*:*:*:*
 <= 10.0.33.8195
Sonicwall Email_Security_Appliance_5050
cpe:2.3:h:sonicwall:email_security_appliance_5050:-:*:*:*:*:*:*:*
Sonicwall Email_Security_Appliance_7000_Firmware
cpe:2.3:o:sonicwall:email_security_appliance_7000_firmware:*:*:*:*:*:*:*:*
 <= 10.0.33.8195
Sonicwall Email_Security_Appliance_7000
cpe:2.3:h:sonicwall:email_security_appliance_7000:-:*:*:*:*:*:*:*
Sonicwall Email_Security_Appliance_7050_Firmware
cpe:2.3:o:sonicwall:email_security_appliance_7050_firmware:*:*:*:*:*:*:*:*
 <= 10.0.33.8195
Sonicwall Email_Security_Appliance_7050
cpe:2.3:h:sonicwall:email_security_appliance_7050:-:*:*:*:*:*:*:*
Sonicwall Email_Security_Appliance_9000_Firmware
cpe:2.3:o:sonicwall:email_security_appliance_9000_firmware:*:*:*:*:*:*:*:*
 <= 10.0.33.8195
Sonicwall Email_Security_Appliance_9000
cpe:2.3:h:sonicwall:email_security_appliance_9000:-:*:*:*:*:*:*:*

References 1

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0018
PSIRT@sonicwall.com
Share Post Share Share Share

Related Vulnerabilities

CVE-2026-3439

Sonicwall

4.9

CVE-2025-40601

Sonicwall

7.5

CVE-2025-40603

Sonicwall

4.5

CVE-2025-23006

Sonicwall

9.8

CVE-2024-53704

Sonicwall

9.8