CVE-2025-40598 — Cross-site Scripting in SMA 100 Series

CWE-79 — Cross-site Scripting4 documents4 sources

Severity

6.1MEDIUMNVD

EPSS

0.1%

top 68.65%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Sonicwall SMA 210 Firmware Sonicwall SMA 410 Firmware Sonicwall SMA 500v Firmware +1 more

Timeline

PublishedJul 23

Latest updateJul 31

Description

A Reflected cross-site scripting (XSS) vulnerability exists in the SMA100 series web interface, allowing a remote unauthenticated attacker to potentially execute arbitrary JavaScript code.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:NExploitability: 2.8 | Impact: 2.7

Affected Packages4 packages

▶CVEListV5sonicwall/sma_100_series10.2.1.15-81sv and earlier versions

▶NVDsonicwall/sma_210_firmware< 10.2.2.1-90sv

▶NVDsonicwall/sma_410_firmware< 10.2.2.1-90sv

▶NVDsonicwall/sma_500v_firmware< 10.2.2.1-90sv

🔴Vulnerability Details

CVEList

CVE-2025-40598: A Reflected cross-site scripting (XSS) vulnerability exists in the SMA100 series web interface, allowing a remote unauthenticated attacker to potentia↗2025-07-23

▶

GHSA

GHSA-x64w-w449-jx7q: A Reflected cross-site scripting (XSS) vulnerability exists in the SMA100 series web interface, allowing a remote unauthenticated attacker to potentia↗2025-07-23

▶

🔍Detection Rules

Suricata

ET WEB_SPECIFIC_APPS SonicWall CGI Reflected Cross-Site Scripting (CVE-2025-40598)↗2025-07-31

▶