CVE-2024-40764

HIGH

SonicOS - DoS

Title source: llm

Description

Heap-based buffer overflow vulnerability in the SonicOS IPSec VPN allows an unauthenticated remote attacker to cause Denial of Service (DoS).

References (1)

Scores

CVSS v3 7.5
EPSS 0.0641
EPSS Percentile 90.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Classification

CWE
CWE-122 CWE-787
Status published

Affected Products (1)

sonicwall/sonicos < 6.5.4.v-21s-rc2457

Timeline

Published Jul 18, 2024
Tracked Since Feb 18, 2026