← back
CVE-2025-23006

CVE-2025-23006

CVSS 9.8 CRITICALEPSS 22.4%● KEVCWE-502
In short

The SMA1000 management console accepts and processes untrusted data before verifying user identity, allowing attackers to run harmful commands on the system without authentication.

Technical detail

CWE-502 deserialization vulnerability in SMA1000 AMC/CMC accepts untrusted serialized objects pre-authentication, enabling remote unauthenticated arbitrary OS command execution under specific conditions through the management interface.

Summary generated and translated by AI from the official description.
Pre-authentication deserialization of untrusted data vulnerability has been identified in the SMA1000 Appliance Management Console (AMC) and Central Management Console (CMC), which in specific conditions could potentially enable a remote unauthenticated attacker to execute arbitrary OS commands.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
SonicWall · SMA1000

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0002https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-23006