Buffer overflow in Sonicwall Sonicos

CVE-2025-40601

A Stack-based buffer overflow vulnerability in the SonicOS SSLVPN service allows a remote unauthenticated attacker to cause Denial of Service (DoS), which could cause an impacted firewall to crash.

Vulnerability class: Buffer Overflow

EPSS: 0.000 (14.3th percentile) — read the EPSS interpretation.

Affected products

Sonicwall Sonicos — versions 7.3.0-7012 and older versions, 8.0.2-8011 and older versions

Weakness classification (CWE)

CWE-121 — Stack-based Buffer Overflow

References

psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0016 (vendor-advisory)