Home > Security > Security News

SonicWall SMA1000 Appliance Zero-Day Vulnerability Exploited by Hackers for RCE

Published
Written by:
Lore Apostol
Lore Apostol
Cybersecurity & Streaming Writer

Hackers are actively exploiting a recently discovered zero-day vulnerability in SonicWall's SMA1000 remote access appliance, breaching corporate networks that utilize the enterprise-grade product. 

Tracked as CVE-2025-23006, it affects the SMA1000 Appliance Management Console (AMC) and Central Management Console (CMC). SonicWall confirmed the attack in a security advisory, urging customers to patch their affected systems immediately.

The pre-authentication deserialization of untrusted data vulnerability allows attackers to deploy malware on compromised devices remotely without requiring authentication credentials. 

In specific conditions, a remote, unauthenticated attacker could execute arbitrary OS commands.

This exploit was initially identified by Microsoft and disclosed to SonicWall last week. Within days, SonicWall confirmed that the bug had already been “actively exploited in the wild,” highlighting that some of its corporate customers had already suffered attacks. However, neither SonicWall nor Microsoft disclosed the number of compromised networks.

To mitigate risks, SonicWall has since released a security hotfix and is urging customers to install the patch on vulnerable devices without delay.

The number of cyberattacks targeting enterprise-grade cybersecurity products is growing. Tools such as remote access appliances, VPNs, and firewalls can also harbor vulnerabilities that, once exploited, compromise the very networks they are meant to protect.

Major cybersecurity vendors—including Cisco, Fortinet, Ivanti, and more—have disclosed zero-day vulnerabilities in recent years that hackers have leveraged to breach corporate networks.


Add a Comment
Related
New Lumma Stealer Campaign Leverages Fake CAPTCHA Verifications
Fraudulent recruiter profile on LinkedIn
Operation 99: Lazarus Group Scams Web3 Devs via Fake LinkedIn Jobs Redirecting to Malware Sites
Cybercriminals Impersonate Google Ads in Promoted Results to Exploit Advertiser Accounts
WordPress Payment Card Skimmer
Covert WordPress Payment Card Skimmer Injects Itself on Checkout Pages, Going Unnoticed
Alleged Top Ransomware FunkSec Operators Appear to Develop Malware Using AI Help
Crowdstrike
Fake Job Offers Impersonating CrowdStrike Target Developers with XMRig Cryptominer Attacks
Most Popular
Ministry of New and Renewable Energy
India’s Ministry of New and Renewable Energy(MNRE) Breached, Threat Actor Claims on Hacking Forum
FC Barcelona Reports and Resolves Cyber Attack on Access Management Systems
Operation Talent: Massive Dark Web Take Down in Joint Legal Action
MGM Resorts Faces $45M Settlement Over Data Breaches Impacting Millions of Customers
NordVPN Launches NordWhisper a Protocol that Mimics Regular Web Traffic and Overpasses Filters
Paradise
Paradise Episodes 2 & 3 Explained: Secrets, Suspicion, and Surprising Revelations
India’s Ministry of New and Renewable Energy(MNRE) Breached, Threat Actor Claims on Hacking Forum
FC Barcelona Reports and Resolves Cyber Attack on Access Management Systems
Operation Talent: Massive Dark Web Take Down in Joint Legal Action
MGM Resorts Faces $45M Settlement Over Data Breaches Impacting Millions of Customers
NordVPN Launches NordWhisper a Protocol that Mimics Regular Web Traffic and Overpasses Filters
Paradise Episodes 2 & 3 Explained: Secrets, Suspicion, and Surprising Revelations

Most Popular
Ministry of New and Renewable Energy
India’s Ministry of New and Renewable Energy(MNRE) Breached, Threat Actor Claims on Hacking Forum
FC Barcelona Reports and Resolves Cyber Attack on Access Management Systems
Operation Talent: Massive Dark Web Take Down in Joint Legal Action
MGM Resorts Faces $45M Settlement Over Data Breaches Impacting Millions of Customers
NordVPN Launches NordWhisper a Protocol that Mimics Regular Web Traffic and Overpasses Filters
Paradise
Paradise Episodes 2 & 3 Explained: Secrets, Suspicion, and Surprising Revelations
India’s Ministry of New and Renewable Energy(MNRE) Breached, Threat Actor Claims on Hacking Forum
FC Barcelona Reports and Resolves Cyber Attack on Access Management Systems
Operation Talent: Massive Dark Web Take Down in Joint Legal Action
MGM Resorts Faces $45M Settlement Over Data Breaches Impacting Millions of Customers
NordVPN Launches NordWhisper a Protocol that Mimics Regular Web Traffic and Overpasses Filters
Paradise Episodes 2 & 3 Explained: Secrets, Suspicion, and Surprising Revelations

© 2025 TechNadu, a part of Leaprove Media LLP. All Rights Reserved.

Close lightbox
Facebook
Twitter
Linkedin
Reddit
Email
Copy Link
For a better user experience we recommend using a more modern browser. We support the latest version of the following browsers: For a better user experience we recommend using the latest version of the following browsers: