CVE-2024-40766: The Patch Fixed the Bug. Nobody Fixed the Configuration.
by Manuel Humberto Santander Pelaez (Version: 1)
The vulnerability
In August 2024 SonicWall published advisory SNWLID-2024-0015 for CVE-2024-40766. It is an improper access control vulnerability in SonicOS. CVSS 9.3. It affects the management interface and the SSLVPN service on Gen 5, Gen 6 and Gen 7 firewalls. Each generatio...
