CVE-2025-40597Heap-based Buffer Overflow in SMA 100 Series

CWE-122Heap-based Buffer Overflow4 documents4 sources
Severity
7.5HIGHNVD
EPSS
0.2%
top 53.81%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Sonicwall SMA 210 FirmwareSonicwall SMA 410 FirmwareSonicwall SMA 500v Firmware+1 more
Timeline
PublishedJul 23
Latest updateJul 31

Description

A Heap-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attacker to cause Denial of Service (DoS) or potentially results in code execution.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages4 packages

CVEListV5sonicwall/sma_100_series10.2.1.15-81sv and earlier versions
NVDsonicwall/sma_210_firmware< 10.2.2.1-90sv
NVDsonicwall/sma_410_firmware< 10.2.2.1-90sv
NVDsonicwall/sma_500v_firmware< 10.2.2.1-90sv

🔴Vulnerability Details

2
CVEList
CVE-2025-40597: A Heap-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attacker to cause Denial of Service (DoS)2025-07-23
GHSA
GHSA-wjrh-49mw-5943: A Heap-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attacker to cause Denial of Service (DoS)2025-07-23

🔍Detection Rules

1
Suricata
ET WEB_SPECIFIC_APPS SonicWall Pre-Auth Heap-Based Buffer Overflow (CVE-2025-40597)2025-07-31
CVE-2025-40597 — Heap-based Buffer Overflow | cvebase