CVE-2025-40596

A Stack-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attacker to cause Denial of Service (DoS) or potentially results in code execution.

CVSS v3 7.3 HIGH

7.3^/10

CVSS v3 : HIGH

Vector :

Exploitability : 3.9 / Impact : 3.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact LOW

Scope UNCHANGED

References

Link	Resource
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0012	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:sonicwall:sma_500v_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:sma_500v:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:sonicwall:sma_210_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:sma_210:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:sonicwall:sma_410_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:sma_410:-:*:*:*:*:*:*:*

History

07 Aug 2025, 14:36

Type	Values Removed	Values Added
References	~~() https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0012 -~~	() https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0012 - Vendor Advisory
CPE		cpe:2.3:h:sonicwall:sma_410:-:::::::* cpe:2.3:o:sonicwall:sma_210_firmware:::::::: cpe:2.3:h:sonicwall:sma_210:-:::::::* cpe:2.3:h:sonicwall:sma_500v:-:::::::* cpe:2.3:o:sonicwall:sma_410_firmware:::::::: cpe:2.3:o:sonicwall:sma_500v_firmware::::::::
Summary		(es) Una vulnerabilidad de desbordamiento de búfer basada en pila en la interfaz web de la serie SMA100 permite que un atacante remoto no autenticado provoque una denegación de servicio (DoS) o potencialmente resulte en la ejecución de código.
First Time		Sonicwall Sonicwall sma 210 Firmware Sonicwall sma 500v Sonicwall sma 210 Sonicwall sma 410 Firmware Sonicwall sma 410 Sonicwall sma 500v Firmware

23 Jul 2025, 15:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-07-23 15:15

Updated : 2025-08-07 14:36

NVD link : CVE-2025-40596

Mitre link : CVE-2025-40596

CVE.ORG link : CVE-2025-40596

JSON object : View

Products Affected

sonicwall

sma_210_firmware
sma_410_firmware
sma_210
sma_500v
sma_500v_firmware
sma_410

CWE

CWE-121

Stack-based Buffer Overflow

{"id": "CVE-2025-40596", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.3, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 3.4, "exploitabilityScore": 3.9}]}, "published": "2025-07-23T15:15:32.140", "references": [{"url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0012", "tags": ["Vendor Advisory"], "source": "PSIRT@sonicwall.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "PSIRT@sonicwall.com", "description": [{"lang": "en", "value": "CWE-121"}]}], "descriptions": [{"lang": "en", "value": "A Stack-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attacker to cause Denial of Service (DoS) or potentially results in code execution."}, {"lang": "es", "value": "Una vulnerabilidad de desbordamiento de b\u00fafer basada en pila en la interfaz web de la serie SMA100 permite que un atacante remoto no autenticado provoque una denegaci\u00f3n de servicio (DoS) o potencialmente resulte en la ejecuci\u00f3n de c\u00f3digo."}], "lastModified": "2025-08-07T14:36:26.510", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sonicwall:sma_500v_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3418E737-CB38-4736-9725-AD05A1AB29CF", "versionEndExcluding": "10.2.2.1-90sv"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sonicwall:sma_500v:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A6AD8A33-7CE4-4C66-9E23-F0C9C9638770"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sonicwall:sma_210_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "786BB26D-B943-4564-B8CC-3260EF2AACED", "versionEndExcluding": "10.2.2.1-90sv"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sonicwall:sma_210:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "51587338-4A5F-41FC-9497-743F061947C2"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sonicwall:sma_410_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "057D8219-D4F0-49FB-8EE4-6BBBDAED49DB", "versionEndExcluding": "10.2.2.1-90sv"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sonicwall:sma_410:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "9DFB8FBC-FFA4-4526-B306-D5692A43DC9E"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "PSIRT@sonicwall.com"}