- Description
- An Improper Authentication vulnerability in the SSLVPN authentication mechanism allows a remote attacker to bypass authentication.
- Source
- PSIRT@sonicwall.com
- NVD status
- Received
CVSS 3.1
- Type
- Secondary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
- PSIRT@sonicwall.com
- CWE-287
Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.
- Hype score
1
🚨 Major vulnerability alert: SonicWall disclosed CVE-2024-53704, allowing attackers to hijack SSLVPN sessions on Gen7 Firewalls. Critical risk for network security. 🔒 #SonicWall #SSLVPN #USA link: https://t.co/7dBarNFXls https://t.co/HAKfGDExzW
@TweetThreatNews
28 Jan 2025
89 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
The Rapid7 ETR team just published an analysis of CVE-2024-53704, a SonicWall VPN authentication bypass that was announced earlier this month. Check it out! https://t.co/ZLB7SnyX39
@the_emmons
28 Jan 2025
10279 Impressions
22 Retweets
63 Likes
17 Bookmarks
2 Replies
2 Quotes
#注意喚起 5,000 台以上の SonicWall ファイアウォールが依然として攻撃に対して脆弱 (CVE-2024-53704) 5,000+ SonicWall firewalls still open to attack (CVE-2024-53704) #HelpNetSecurity (Jan 27) https://t.co/hDprWFvnim
@foxbook
27 Jan 2025
83 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
5,000+ #SonicWall #firewalls still open to attack (#CVE-2024-53704) https://t.co/nBwDkBVdf3
@ScyScan
27 Jan 2025
33 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
SonicWall CVE-2024-53704: SSL VPN Session Hijacking https://t.co/eidfMtfIds
@Dinosn
22 Jan 2025
2759 Impressions
13 Retweets
36 Likes
8 Bookmarks
0 Replies
0 Quotes
به تازگی برای محصولات SSH management و VPN مربوط به SonicWall آسیب پذیری با کد شناسایی CVE-2024-53704 منتشر شده است. فایروال های SonicWall نسخه 6.5.4.15-117n و قدیمی تر دارای این آسیب پذیری می باشند. https://t.co/Poz3aKY03t https://t.co/ASQSreK18Q
@AmirHossein_sec
12 Jan 2025
31 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-53704 impacts SonicWall #CVE-2024-53704 #SonicWall https://t.co/JIKpnqT0oD
@pravin_karthik
11 Jan 2025
26 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Threat Alert: SonicWall tells admins to patch worrying SSLVPN flaw immediately CVE-2024-53704 CVE-2024-40762 CVE-2024-53705 Severity: 🔴 High Maturity: 🧨 Trending Learn more: https://t.co/BE7rIxijE6 #CyberSecurity #ThreatIntel #InfoSec
@fletch_ai
10 Jan 2025
16 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
SonicWall SSLVPN認証メカニズムにおける不適切な認証により、リモート攻撃者が認証を回避可能 CVE-2024-53704 CVSS 8.2 など、修正済みバージョンがリリースされました。 影響範囲:SonicWallのGen6およびGen7ファイアウォール製品、クラウドプラットフォーム(AWSおよびAzureエディション) https://t.co/6yCbUuaI1j
@t_nihonmatsu
10 Jan 2025
274 Impressions
0 Retweets
2 Likes
0 Bookmarks
0 Replies
0 Quotes
SonicWall SSLVPN認証メカニズムにおける不適切な認証により、リモート攻撃者が認証を回避可能 CVE-2024-53704 CVSS 8.2 など 影響範囲:SonicWallのGen6およびGen7ファイアウォール製品、クラウドプラットフォーム(AWSおよびAzureエディション) 最新のバージョンにアップデートして下さい。 https://t.co/QytCcSCVH9
@t_nihonmatsu
10 Jan 2025
62 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 Heads up, cybersecurity folks! SonicWall's SSL VPN bug (CVE-2024-53704) is a high-severity vulnerability. Patch your devices now & limit access to stay safe! #CyberSecurity #PatchNow More info: https://t.co/4qGDEhQ0DZ
@ThreatVector24
9 Jan 2025
31 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Warning: 4 High vulnerabilities in several SonicWall firewall products, #CVE-2024-53704 being the highest with CVSS:8.2. These could lead to authentication bypass, remote code execution and unauthorized connection! #Patch #Patch #Patch https://t.co/bQmckqgzfC
@CCBalert
9 Jan 2025
104 Impressions
0 Retweets
1 Like
1 Bookmark
0 Replies
0 Quotes
CVE-2024-53704,CVE-2024-40762,CVE-2024-53705,CVE-2024-53706 alert 🚨 SonicWall improper authentication vulnerability in the SSLVPN The vulnerability is actively exploited in the wild and has been integrated into Patrowl. Our customers assets are protected. 🦉 #CyberSec #SonicWall
@Patrowl_io
9 Jan 2025
54 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-53704 Improper Authentication Exploit in SSLVPN Allows Remote Bypass There is an Improper Authentication flaw in the SSLVPN system. It lets a remote attacker get past authentication. https://t.co/roLgAb9dk0
@VulmonFeeds
9 Jan 2025
37 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-53704 An Improper Authentication vulnerability in the SSLVPN authentication mechanism allows a remote attacker to bypass authentication. https://t.co/JDroL7WgKT
@CVEnew
9 Jan 2025
124 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨SonicWall、悪用され得るSSLVPNの脆弱性への早急なパッチ適用を呼びかけ:CVE-2024-53704 ⚠️2025年に警戒すべきマルウェア5選 〜サイバーアラート 1月9日〜 https://t.co/bkBxX7Ray9 #セキュリティ #インテリジェンス #OSINT
@MachinaRecord
9 Jan 2025
25 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
SonicWall urges admins to patch exploitable SSLVPN bug immediately https://t.co/fT46cBplZN "CVE-2024-53704 (CVSS v3.0 score: 8.2, "high"), stating it impacts multiple generation six and generation seven firewalls, running 6.5.4.15-117n and older and 7.0.1-5161 and older versions"
@catnap707
8 Jan 2025
6 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
SonicWall warns customers to urgently update SonicOS firmware to fix critical SSL VPN bug (CVE-2024-53704) with high CVSS score 8.2. Additional vulnerabilities also detected. 🌐🔒 #SonicWall #SSLVPN #USA #CybersecurityNews link: https://t.co/cuE3lFwchX https://t.co/l8VlR6rqJv
@TweetThreatNews
8 Jan 2025
7 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
A significant cybersecurity flaw, identified as CVE-2024-53704, has been discovered in SonicWall’s SonicOS SSL VPN firmware. #Cybersecurity #infosecnews #LatestNews https://t.co/tY2o9NcWyj
@LHackingupdates
8 Jan 2025
49 Impressions
1 Retweet
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨🚨CVE-2024-40762, CVE-2024-53704, CVE-2024-53705, CVE-2024-53706: SonicWall Issues Important Security Advisory for Multiple Vulnerabilities in SonicOS ZoomEye Dork👉banner="SonicOS" 48k+ results are found on ZoomEye. ZoomEye Link: https://t.co/BBGCGDPXCA Refer:… https://t.co
@zoomeye_team
8 Jan 2025
87 Impressions
0 Retweets
0 Likes
1 Bookmark
0 Replies
0 Quotes
⚠️⚠️ CVE-2024-53704 (CVSS 8.2): An improper authentication vulnerability in the SSLVPN 🎯14.7k+ Results are found on the https://t.co/pb16tGYaKe nearly year. 🔗FOFA Link:https://t.co/zAofIGTu9d FOFA Query:app="SonicOS" 🔖Refer: https://t.co/utPpPPwr0A #OSINT #FOFA… https://t
@fofabot
8 Jan 2025
753 Impressions
2 Retweets
8 Likes
3 Bookmarks
0 Replies
0 Quotes
🚨Alert🚨 CVE-2024-53704 : Zero-day vulnerability in Sonicwall: An authentication bypass in SonicOS SSLVPN 📊 15.9K+ Services are found on https://t.co/ysWb28BTvF yearly. 🔗Hunter Link: https://t.co/7lZnlpHCCa 👇Query HUNTER :/product.name="SonicOS" FOFA : product="SonicOS"… http
@HunterMapping
8 Jan 2025
5045 Impressions
30 Retweets
78 Likes
27 Bookmarks
1 Reply
1 Quote
SonicWall社がSonicOSの複数脆弱性を修正。CVE-2024-53704はCVSSスコア8.2で、SSL-VPNにおける認証迂回。 https://t.co/kJzDtRqnG0 メモ: > CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H どういうことだってばよ… https://t.co/LOooZffbQk
@__kokumoto
8 Jan 2025
1322 Impressions
2 Retweets
5 Likes
2 Bookmarks
0 Replies
0 Quotes