CVE-2025-40597

A Heap-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attacker to cause Denial of Service (DoS) or potentially results in code execution.

CVSS v3 7.5 HIGH

7.5^/10

CVSS v3 : HIGH

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0012	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:sonicwall:sma_500v_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:sma_500v:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:sonicwall:sma_210_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:sma_210:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:sonicwall:sma_410_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sonicwall:sma_410:-:*:*:*:*:*:*:*

History

07 Aug 2025, 14:36

Type	Values Removed	Values Added
First Time		Sonicwall sma 500v Firmware Sonicwall sma 210 Sonicwall Sonicwall sma 410 Firmware Sonicwall sma 410 Sonicwall sma 210 Firmware Sonicwall sma 500v
References	~~() https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0012 -~~	() https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0012 - Vendor Advisory
CPE		cpe:2.3:o:sonicwall:sma_500v_firmware:::::::: cpe:2.3:o:sonicwall:sma_210_firmware:::::::: cpe:2.3:o:sonicwall:sma_410_firmware:::::::: cpe:2.3:h:sonicwall:sma_500v:-:::::::* cpe:2.3:h:sonicwall:sma_210:-:::::::* cpe:2.3:h:sonicwall:sma_410:-:::::::*
Summary		(es) Una vulnerabilidad de desbordamiento de búfer basada en montón en la interfaz web de la serie SMA100 permite que un atacante remoto no autenticado provoque una denegación de servicio (DoS) o potencialmente resulte en la ejecución de código.

23 Jul 2025, 15:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-07-23 15:15

Updated : 2025-08-07 14:36

NVD link : CVE-2025-40597

Mitre link : CVE-2025-40597

CVE.ORG link : CVE-2025-40597

JSON object : View

Products Affected

sonicwall

sma_210_firmware
sma_410
sma_410_firmware
sma_500v
sma_500v_firmware
sma_210

CWE

CWE-122

Heap-based Buffer Overflow

{"id": "CVE-2025-40597", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2025-07-23T15:15:32.320", "references": [{"url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0012", "tags": ["Vendor Advisory"], "source": "PSIRT@sonicwall.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "PSIRT@sonicwall.com", "description": [{"lang": "en", "value": "CWE-122"}]}], "descriptions": [{"lang": "en", "value": "A Heap-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attacker to cause Denial of Service (DoS) or potentially results in code execution."}, {"lang": "es", "value": "Una vulnerabilidad de desbordamiento de b\u00fafer basada en mont\u00f3n en la interfaz web de la serie SMA100 permite que un atacante remoto no autenticado provoque una denegaci\u00f3n de servicio (DoS) o potencialmente resulte en la ejecuci\u00f3n de c\u00f3digo."}], "lastModified": "2025-08-07T14:36:16.930", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sonicwall:sma_500v_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3418E737-CB38-4736-9725-AD05A1AB29CF", "versionEndExcluding": "10.2.2.1-90sv"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sonicwall:sma_500v:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A6AD8A33-7CE4-4C66-9E23-F0C9C9638770"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sonicwall:sma_210_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "786BB26D-B943-4564-B8CC-3260EF2AACED", "versionEndExcluding": "10.2.2.1-90sv"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sonicwall:sma_210:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "51587338-4A5F-41FC-9497-743F061947C2"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sonicwall:sma_410_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "057D8219-D4F0-49FB-8EE4-6BBBDAED49DB", "versionEndExcluding": "10.2.2.1-90sv"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sonicwall:sma_410:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "9DFB8FBC-FFA4-4526-B306-D5692A43DC9E"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "PSIRT@sonicwall.com"}