SonicWall, a leader in network security, has released patches for 15 vulnerabilities found in its Global Management System (GMS) and Analytics products. Among these, four were classified as critical-severity vulnerabilities. The GMS is a web-based platform used for managing and monitoring SonicWall firewall appliances, and the Analytics product serves as a management and reporting engine.
The four critical vulnerabilities could potentially allow threat actors to bypass authentication processes, which could result in the exposure of sensitive data. Two of these vulnerabilities are identified as CVE-2023-34133 and CVE-2023-34134, with a CVSS score of 9.8. They are classified as unauthenticated SQL injection and password hash exposure issues, respectively. The other two critical vulnerabilities, CVE-2023-34124 and CVE-2023-34137, with a CVSS score of 9.4, are identified as a web service authentication bypass and a CAS authentication bypass, respectively.
In addition to the critical vulnerabilities, SonicWall also addressed four high-severity vulnerabilities and seven medium-severity vulnerabilities. SonicWall stated in an advisory, "The suite of vulnerabilities allows an attacker to view data that they are not normally able to retrieve. This might include data belonging to other users, or any other data that the application itself is able to access. In many cases, an attacker can modify or delete this data, causing persistent changes to the application’s content or behavior."
All 15 vulnerabilities were addressed in the GMS version 9.3.3 and Analytics version 2.5.2. SonicWall credited NCC Group for reporting these vulnerabilities and stated that no workarounds are available. They strongly recommend organizations using their GMS and Analytics products to update to the patched releases immediately.
SonicWall also confirmed that they are not aware of any instances where these vulnerabilities have been exploited in real-world attacks or of any proof-of-concept exploits being publicly available. However, they acknowledged that SonicWall appliances have been targeted by malicious attacks exploiting similar vulnerabilities in the past.