SonicWall security advisory (AV25-035)

Serial number: AV25-035
Date: January 23, 2025

On January 22, 2025, SonicWall published a security advisory to address a critical vulnerability VulnerabilityA flaw or weakness in the design or implementation of an information system or its environment that could be exploited to adversely affect an organization's assets or operations. in the following products:

• SMA1000 Appliance Management Console (AMC) – version 12.4.3-02804 (platform-hotfix) and prior
• Central Management Console (CMC) – version 12.4.3-02804 (platform-hotfix) and prior

SonicWall has reported that vulnerability CVE-2025-23006 has been exploited.

The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.

• Product Notice: Urgent Security Notification – SMA 1000
• SonicWall Security Advisory – SNWLID-2025-0002
• SonicWall Security Advisories
• CISA Adds One Known Exploited Vulnerability to Catalog | CISA