CRITICAL🇵🇱 Wersja polska

CVE-2024-40762

CVSS 9.8v3.1pub. 2025-01-09upd. 2026-04-15

Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) in the SonicOS SSLVPN authentication token generator that, in certain cases, can be predicted by an attacker potentially resulting in authentication bypass.

🤖 AI Analysis
How it works

The authentication token generator in SonicOS SSLVPN uses a cryptographically weak PRNG algorithm (CWE-338), which does not provide sufficient entropy or unpredictability. An attacker, by knowing the algorithm used or observing previously generated tokens, can predict the values of subsequent tokens. This allows them to generate a valid authentication token without providing correct login credentials and gain unauthorized access to the resource protected by the VPN.

Impact

A remote, unauthenticated attacker can bypass the SonicOS SSLVPN authentication mechanism and gain unauthorized access to the VPN network, resulting in complete compromise of confidentiality, integrity, and availability of protected resources.

Mitigation & patch

Patches available from the vendor should be applied in accordance with the references: https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0003

Who is affected

SonicOS SSLVPN — versions indicated in vendor references (SonicWall PSIRT SNWLID-2025-0003)

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Auth BypassVPN
CWE
References