A critical security flaw, CVE-2024-53704, has been identified in SonicWall's SonicOS SSLVPN application, enabling remote attackers.| Cyber Security News
Security researchers have exploited CVE-2024-53704, an authentication bypass affecting the SSL VPN component of unpatched SonicWall firewalls. Watch demo!| Bishop Fox
Weeks after the company released a patch, researchers warn the CVE is being targeted by threat actors.| Cybersecurity Dive
Bishop Fox published technical details and proof-of-concept (PoC) exploit code for CVE-2024-53704, a high-severity authentication bypass vulnerability caused by a flaw in the SSLVPN authentication mechanism in SonicOS, the operating system used by SonicWall firewalls. Shortly after the PoC was made public, Arctic Wolf began observing exploitation attempts of this vulnerability in the threat landscape.| Arctic Wolf