VulnerabilityBleeping Computer
9.1 — CRITICAL
Hackers bypass SonicWall VPN MFA due to incomplete patching
Threat actors brute-forced VPN credentials and bypassed multi-factor authentication (MFA) on SonicWall Gen6 SSL-VPN appliances to deploy tools used in ransomware attacks. [...]
🤖 AI BriefingAuto-generated threat analysis
🔍Threat Overview
Hackers exploited a SonicWall VPN MFA vulnerability (CVE-2024-12802) to bypass multi-factor authentication and deploy tools used in ransomware attacks, targeting organizations with Gen6 SSL-VPN appliances.
⚙️Technical Details
💥Impact Assessment
Severity: Critical
Who Is at Risk
Organizations with Gen6 SSL-VPN appliances, including finance and healthcare sectors
🛡️Recommended Actions
1Update SonicWall firmware to the latest version
2Reconfigure LDAP server settings according to vendor's advisory
3Implement additional security measures, such as monitoring for suspicious VPN logins and event IDs
📦Affected Products
Product Name: SonicWall Gen6 SSL-VPN appliancesAffected Software:
🔐NVD Verified DataVERIFIED
CVE-2024-12802 ↗CVSS 9.1 — CRITICAL
Attack Vector
NETWORK
Complexity
LOW
Vector String
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:NWeaknesses
CWE-305
Read the full article
This is a curated summary. The complete article is available at Bleeping Computer.