SonicWall Exploit Chain Exposes Admin Hijack Risk via CVE-2023-44221 and CVE-2024-38475

May 4, 2025

SonicWall Exploit Chain Exposes Admin Hijack Risk via CVE-2023-44221 and CVE-2024-38475

Image: watchTowr
A newly exploit chain targeting SonicWall’s Secure Mobile Access (SMA) appliances has been released. Published by watchTowr Labs, the technical disclosure outlines how two distinct vu …

Published Date:
May 05, 2025 (1 hour, 28 minutes ago)

Vulnerabilities has been mentioned in this article.

CVE-2024-40766

CVE-2024-38475

CVE-2023-44221

Source: Read More

Previous ArticleBridewell Uncovers ‘Operation Deceptive Prospect’ Targeting UK Organizations via Feedback Portals

Next Article CVE-2025-31191: Microsoft Exposes macOS Vulnerability Allowing App Sandbox Escape

Error’d: You Talkin’ to Me?

The Psychology Of Trust In AI: A Guide To Measuring And Designing For User Confidence

This week in AI updates: OpenAI Codex updates, Claude integration in Xcode 26, and more (September 19, 2025)

Report: The major factors driving employee disengagement in 2025

Development Release: Zorin OS 18 Beta

Distribution Release: IPFire 2.29 Core 197

Development Release: Ubuntu 25.10 Beta

Development Release: Linux Mint 7 Beta “LMDE”

The attack on the npm ecosystem continues

The attack on the npm ecosystem continues

Feature Highlight

SVAR React Core – New UI Library with 20+ Components

Hyprland Made Easy: Preconfigured Beautiful Distros

Hyprland Made Easy: Preconfigured Beautiful Distros

Development Release: Zorin OS 18 Beta

Distribution Release: IPFire 2.29 Core 197

SonicWall Exploit Chain Exposes Admin Hijack Risk via CVE-2023-44221 and CVE-2024-38475

SonicWall Exploit Chain Exposes Admin Hijack Risk via CVE-2023-44221 and CVE-2024-38475

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

Development Release: GLF OS Omnislash Beta

New Android Malware Wave Hits Banking via NFC Relay Fraud, Call Hijacking, and Root Exploits

French submarine secrets surface after cyber attack

Grow is a declarative website generator

Top 10 new Windows 11 features and changes unveiled via the Insider Program in June 2025 — and where to find them

CVE-2025-20309 (CVSS 10): Cisco Patches Critical Static SSH Root Credential Flaw in Unified CM

CVE-2025-55454 – DooTask RCE File Upload Vulnerability

CVE-2025-22883 – Delta Electronics ISPSoft Out-Of-Bounds Write Vulnerability

SonicWall Exploit Chain Exposes Admin Hijack Risk via CVE-2023-44221 and CVE-2024-38475

SonicWall Exploit Chain Exposes Admin Hijack Risk via CVE-2023-44221 and CVE-2024-38475

Related Posts