CVE-2024-40765

Critical CVSS: 9.8

An Integer-based buffer overflow vulnerability in the SonicOS via IPSec allows a remote attacker in specific conditions to cause Denial of Service (DoS) and potentially execute arbitrary code by sending a specially crafted IKEv2 payload.

Vendor

Product

CWE

CWE-190

Yayın Tarihi

2025-01-09 08:15:26

Güncelleme

2025-01-09 15:15:15

Source Identifier

PSIRT@sonicwall.com

KEV Date Added

Kategoriler

CWE-190 CRITICAL 2025

Referanslar

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0013