On January 22nd, SonicWall disclosed that a previously undiscovered vulnerability was exploited to attack their Secure Mobile Appliances internally. Soon after that, NCC Group discovered another previously unknown vulnerability being exploited in the wild affecting SMAs. SonicWall has confirmed that customers can utilize the Web Application Firewall (WAF) to detect and prevent the exploit. Patches are now available, and SonicWall recommends that all customers update their appliances as soon as possible. Details from the NCC group indicate the flaw results in an authentication bypass for the management interface, similar to the widely-exploited vulnerabilities that affected F5 and Citrix devices in 2020.
By Anthony Zampino Introduction Leading up to the most recent Russian invasion of Ukraine in