CVE-2024-12802 – SonicWall SSL-VPN Vulnerability

Severity

High

Analysis Summary

CVE-2024-12802

SSL-VPN MFA Bypass in SonicWALL SSL-VPN can arise in specific cases due to the separate handling of UPN (User Principal Name) and SAM (Security Account Manager) account names when integrated with Microsoft Active Directory, allowing MFA to be configured independently for each login method and potentially enabling attackers to bypass MFA by exploiting the alternative account name.

Impact

Security Bypass

Indicators of Compromise

CVE

CVE-2024-12802

Affected Vendors

Sonicwall

Affected Products

SonicWall Gen7 Firewalls
SonicWall Gen6 NSv
SonicWall Gen6 Firewalls
SonicWall TZ80

Remediation

Refer to SonicWall Security Advisory for patch, upgrade, or suggested workaround information.

SonicWall Security Advisory

Multiple Apache Products Vulnerabilities

ICS: Multiple Siemens Products Vulnerabilities

CVE-2024-12802 – SonicWall SSL-VPN Vulnerability

Severity

High

Analysis Summary

Indicators of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan