CVE-2025-40596 — Stack-based Buffer Overflow in SMA 100 Series

CWE-121 — Stack-based Buffer Overflow4 documents4 sources

Severity

7.3HIGHNVD

EPSS

0.3%

top 50.58%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Sonicwall SMA 210 Firmware Sonicwall SMA 410 Firmware Sonicwall SMA 500v Firmware +1 more

Timeline

PublishedJul 23

Latest updateJul 31

Description

A Stack-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attacker to cause Denial of Service (DoS) or potentially results in code execution.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:LExploitability: 3.9 | Impact: 3.4

Affected Packages4 packages

▶CVEListV5sonicwall/sma_100_series10.2.1.15-81sv and earlier versions

▶NVDsonicwall/sma_210_firmware< 10.2.2.1-90sv

▶NVDsonicwall/sma_410_firmware< 10.2.2.1-90sv

▶NVDsonicwall/sma_500v_firmware< 10.2.2.1-90sv

🔴Vulnerability Details

GHSA

GHSA-9c9q-24rh-frhg: A Stack-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attacker to cause Denial of Service (DoS↗2025-07-23

▶

CVEList

CVE-2025-40596: A Stack-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attacker to cause Denial of Service (DoS↗2025-07-23

▶

🔍Detection Rules

Suricata

ET WEB_SPECIFIC_APPS SonicWall Pre-Auth Stack-Based Buffer Overflow (CVE-2025-40596)↗2025-07-31

▶