CVE-2025-40604

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2025-40604
Download of Code Without Integrity Check Vulnerability in the SonicWall Email Security appliance loads root filesystem images without verifying signatures, allowing attackers with VMDK or datastore access to modify system files and gain persistent arbitrary code execution.

9.8 /10

CVSS v3 : CRITICAL

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0018 Vendor Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:sonicwall:email_security_appliance_5000_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:sonicwall:email_security_appliance_5000:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:sonicwall:email_security_appliance_5050_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:sonicwall:email_security_appliance_5050:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:sonicwall:email_security_appliance_7000_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:sonicwall:email_security_appliance_7000:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:sonicwall:email_security_appliance_7050_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:sonicwall:email_security_appliance_7050:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:sonicwall:email_security_appliance_9000_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:sonicwall:email_security_appliance_9000:-:*:*:*:*:*:*:*
History

12 Dec 2025, 15:44

Type Values Removed Values Added
References () https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0018 - () https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0018 - Vendor Advisory
CPE cpe:2.3:o:sonicwall:email_security_appliance_7000_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:sonicwall:email_security_appliance_5000:-:*:*:*:*:*:*:*
cpe:2.3:o:sonicwall:email_security_appliance_9000_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:sonicwall:email_security_appliance_5050_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:sonicwall:email_security_appliance_5000_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:sonicwall:email_security_appliance_5050:-:*:*:*:*:*:*:*
cpe:2.3:h:sonicwall:email_security_appliance_7050:-:*:*:*:*:*:*:*
cpe:2.3:h:sonicwall:email_security_appliance_9000:-:*:*:*:*:*:*:*
cpe:2.3:h:sonicwall:email_security_appliance_7000:-:*:*:*:*:*:*:*
cpe:2.3:o:sonicwall:email_security_appliance_7050_firmware:*:*:*:*:*:*:*:*
First Time Sonicwall email Security Appliance 9000 Firmware
Sonicwall email Security Appliance 5000 Firmware
Sonicwall email Security Appliance 5050
Sonicwall email Security Appliance 5050 Firmware
Sonicwall email Security Appliance 5000
Sonicwall email Security Appliance 9000
Sonicwall email Security Appliance 7000
Sonicwall email Security Appliance 7050 Firmware
Sonicwall email Security Appliance 7050
Sonicwall
Sonicwall email Security Appliance 7000 Firmware
CVSS v2 : unknown
v3 : 6.5 		v2 : unknown
v3 : 9.8

20 Nov 2025, 19:16

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 6.5

20 Nov 2025, 15:17

Type Values Removed Values Added
New CVE
Information

Published : 2025-11-20 15:17

Updated : 2025-12-12 15:44

NVD link : CVE-2025-40604

Mitre link : CVE-2025-40604

CVE.ORG link : CVE-2025-40604

JSON object : View

Products Affected

sonicwall

  • email_security_appliance_5000_firmware
  • email_security_appliance_5050
  • email_security_appliance_7000
  • email_security_appliance_5000
  • email_security_appliance_7000_firmware
  • email_security_appliance_9000_firmware
  • email_security_appliance_9000
  • email_security_appliance_5050_firmware
  • email_security_appliance_7050_firmware
  • email_security_appliance_7050
CWE
CWE-494

Download of Code Without Integrity Check