Attackers exploited old flaws to breach SonicWall SMA appliances (CVE-2024-38475, CVE-2023-44221)

May 2, 2025

Attackers exploited old flaws to breach SonicWall SMA appliances (CVE-2024-38475, CVE-2023-44221)

Attackers have been using two previously known vulnerabilities (CVE-2024-38475, CVE-2023-44221) to compromise SonicWall secure mobile access devices, the vendor has confirmed by updating the associate …

Published Date:
May 02, 2025 (3 hours, 41 minutes ago)

Vulnerabilities has been mentioned in this article.

Source: Read More

Previous ArticleUS indicts Black Kingdom ransomware admin for Microsoft Exchange attacks

Next Article 8 Best Free and Open Source NVIDIA GPU Monitoring Tools

Highlights

CVE-2025-4076 – LB-LINK BL-AC3600 Password Handler Command Injection Vulnerability

April 29, 2025

CVE ID : CVE-2025-4076

Published : April 29, 2025, 6:15 p.m. | 52 minutes ago

Description : A vulnerability classified as critical has been found in LB-LINK BL-AC3600 up to 1.0.22. This affects the function easy_uci_set_option_string_0 of the file /cgi-bin/lighttpd.cgi of the component Password Handler. The manipulation of the argument routepwd leads to command injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Sunshine And March Vibes (2025 Wallpapers Edition)

The Case For Minimal WordPress Setups: A Contrarian View On Theme Frameworks

How To Fix Largest Contentful Paint Issues With Subpart Analysis

How To Prevent WordPress SQL Injection Attacks

Elden Ring Nightreign classes: All 8 Nightfarer characters in FromSoftware’s co-op spinoff explained

How I make my own NFC tags to share my Wi-Fi password with guests – it’s easy!

Microsoft Bing is stealing tens of millions of Google’s search users according to the latest data

Microsoft could bring Elon Musk’s Grok AI model to Azure — Cozying up with OpenAI’s arch-nemesis xAI for its AI Foundry

Perficient is Headed to Salesforce Connections 2025: Here’s What You Need to Know

Perficient is Headed to Salesforce Connections 2025: Here’s What You Need to Know

Perficient Wins 2025 Delivery Award at Appian World for Second Consecutive Year

JavaScript Pulse: Weekly Dev Digest – May 2, 2025

Elden Ring Nightreign classes: All 8 Nightfarer characters in FromSoftware’s co-op spinoff explained

Elden Ring Nightreign classes: All 8 Nightfarer characters in FromSoftware’s co-op spinoff explained

Spf Permerror Troubleshooting Guide For Better Email Deliverability Today

KEditBookmarks is a bookmark organizer and editor

Attackers exploited old flaws to breach SonicWall SMA appliances (CVE-2024-38475, CVE-2023-44221)

Attackers exploited old flaws to breach SonicWall SMA appliances (CVE-2024-38475, CVE-2023-44221)

CISA Adds Two New Exploited Vulnerabilities to Its Catalog: CVE-2024-38475 and CVE-2023-44221

CVE-2024-13738 – “Motors Car Dealer, Rental & Listing WordPress Theme Shortcode Execution Vulnerability”

Razer Cortex Overlay Not Working: 4 Ways to Fix it

KDE Plasma 6.3 Released, This is What’s New

Zyxel RCE Vulnerability Allows Arbitrary Query Execution Without any Authentication

Azure GPT-4 Analysis of the New CRA: Part 2

CVE-2025-4076 – LB-LINK BL-AC3600 Password Handler Command Injection Vulnerability

Whatâ€™s your Developer Persona?

Easily Optimize PDFs in Laravel with the Optimizer Package

An ancient RNA-guided system could simplify delivery of gene editing therapies

Attackers exploited old flaws to breach SonicWall SMA appliances (CVE-2024-38475, CVE-2023-44221)

Attackers exploited old flaws to breach SonicWall SMA appliances (CVE-2024-38475, CVE-2023-44221)

Related Posts