More than 25,000 publicly accessible SonicWall SSLVPN devices are vulnerable to serious flaws.
More than 25,000 SonicWall SSLVPN devices appear to be vulnerable to serious security flaws. That’s because most of these devices use outdated firmware that is no longer supported, BleepingComputer knows.
Outdated firmware
Cybersecurity firm Bishop Fox identified 430,363 publicly exposed SonicWall firewalls worldwide. That sounds similar to the firewalls vulnerable to RCE attacks earlier this year. More than 20,000 of those firewalls used outdated firmware. Public exposure means attackers can look for vulnerabilities, unpatched firmware, misconfigurations and weak passwords. Those vulnerabilities have already been exploited by hackers because they are an enticing target to gain access to corporate networks.
“The management interface of a firewall should never be made public because it creates an unnecessary risk,” Bishop Fox explained in a blog.
6,633 firewalls were still using firmware versions Series 4 and 5, even though that support ended years ago. Another 14,077 were operating on no longer supported versions of Series 6. Surprisingly, most of the devices that are vulnerable are running on Series 7 firmware. They have not yet been updated to the latest version that plugs security vulnerabilities.