SSRF in Sonicwall Sonicos

CVE-2024-53705

A Server-Side Request Forgery vulnerability in the SonicOS SSH management interface allows a remote attacker to establish a TCP connection to an IP address on any port when the user is logged in to the firewall.

Vulnerability class: SSRF (Server-Side Request Forgery)

EPSS: 0.001 (34.8th percentile) — read the EPSS interpretation.

Affected products

Sonicwall Sonicos — versions 6.5.4.15-117n and older versions, 7.0.1-5161 and older versions, 7.1.1-7058 and older versions

Weakness classification (CWE)

CWE-918 — Server-Side Request Forgery (SSRF)

References

psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0003 (vendor-advisory)