Skip to content

News
Cybercrime
Risk
Policy
Privacy
Research
Cloud
Insurance

LinkedIn
Facebook

OVERSTEP

SonicWall issues patch for actively exploited SMA 100 series privilege escalation bug

News, Risk, Vendors, Vulnerabilities

December 18, 2025

SonicWall released fixes for CVE-2025-40602, a local privilege escalation in SMA 100 series appliances that has been actively exploited; the flaw was reportedly used with CVE-2025-23006 to achieve unauthenticated root code execution, and users are urged to apply patches promptly.

About
Editorial Policy
Privacy
Contact