What is CVE-2024-53703?

CVE-2024-53703 is a vulnerability in Sonicwall Sma100, classified under Stack-based Buffer Overflow. Published 2024-12-05.

Is CVE-2024-53703 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Buffer overflow in Sonicwall Sma100

CVE-2024-53703

A vulnerability in the SonicWall SMA100 SSLVPN firmware 10.2.1.13-72sv and earlier versions mod_httprp library loaded by the Apache web server allows remote attackers to cause Stack-based buffer overflow and potentially lead to code execut…

Vulnerability class: Buffer Overflow

EPSS: 0.291 (96.7th percentile) — read the EPSS interpretation.

Affected products

Sonicwall Sma100 — versions 10.2.1.13-72sv and earlier versions

Weakness classification (CWE)

CWE-121 — Stack-based Buffer Overflow

Public proof-of-concept exploits

scrt/cve-2024-53703-poc
zulloper/cve-poc

References

psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0018 (vendor-advisory)

Frequently asked questions

What is CVE-2024-53703?: CVE-2024-53703 is a vulnerability in Sonicwall Sma100, classified under Stack-based Buffer Overflow. Published 2024-12-05.
Is CVE-2024-53703 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.