cbcvebase.
CVE-2024-53703
published 2024-12-05

CVE-2024-53703: A vulnerability in the SonicWall SMA100 SSLVPN firmware 10.2.1.13-72sv and earlier versions mod_httprp library loaded by the Apache web server allows remote…

PriorityP259high8.1CVSS 3.1
AVNACHPRNUINSUCHIHAH
EPSS
12.71%
95.8th percentile
A vulnerability in the SonicWall SMA100 SSLVPN firmware 10.2.1.13-72sv and earlier versions mod_httprp library loaded by the Apache web server allows remote attackers to cause Stack-based buffer overflow and potentially lead to code execution.

Affected

7 ranges
VendorProductVersion rangeFixed in
sonicwallsma
sonicwallsma100
sonicwallsma_200_firmware< 10.2.1.14-75sv10.2.1.14-75sv
sonicwallsma_210_firmware< 10.2.1.14-75sv10.2.1.14-75sv
sonicwallsma_400_firmware< 10.2.1.14-75sv10.2.1.14-75sv
sonicwallsma_410_firmware< 10.2.1.14-75sv10.2.1.14-75sv
sonicwallsma_500v_firmware< 10.2.1.14-75sv10.2.1.14-75sv

Detection & IOCsextracted from sources · hover to see the quote

  • Target is the mod_httprp library loaded by the Apache web server on SonicWall SMA100 SSLVPN devices; monitor for anomalous or oversized requests to the Apache/mod_httprp handler on affected appliances
  • Stack-based buffer overflow triggered remotely; look for crash/core dumps or unexpected process restarts of the Apache web server process on SMA100 devices running firmware 10.2.1.13-72sv or earlier
  • ·Affected firmware versions are 10.2.1.13-72sv and earlier on SonicWall SMA100 SSLVPN; ensure detection/patching scope covers all devices running these versions
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.