Actively exploited vulnerability

CVE-2025-40602: SonicWall SMA1000 Missing Authorization Vulnerability

SonicWall SMA1000 contains a missing authorization vulnerability that could allow for privilege escalation appliance management console (AMC) of affected devices.

CISA KEV source 17 Dec 2025 added 24 Dec 2025 remediation due

Affected product

SonicWall ยท SMA1000 appliance

Known ransomware use: Unknown

Required action

Follow the source advisory and validate exposure in your environment.

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable

Related Yasna coverage

Recent reporting that mentions CVE-2025-40602.