CVE-2025-40604

CRITICAL

SonicWall Email Security Appliance Firmware < 10.0.33.8195 - Download of Code Without Integrity Check

Title source: llm

Description

Download of Code Without Integrity Check Vulnerability in the SonicWall Email Security appliance loads root filesystem images without verifying signatures, allowing attackers with VMDK or datastore access to modify system files and gain persistent arbitrary code execution.

References (1)

Core 1

Core References

Vendor Advisory vendor-advisory

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0018

Scores

CVSS v3 9.8

EPSS 0.0016

EPSS Percentile 6.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-494

Status published

Products (5)

sonicwall/email_security_appliance_5000_firmware < 10.0.33.8195

sonicwall/email_security_appliance_5050_firmware < 10.0.33.8195

sonicwall/email_security_appliance_7000_firmware < 10.0.33.8195

sonicwall/email_security_appliance_7050_firmware < 10.0.33.8195

sonicwall/email_security_appliance_9000_firmware < 10.0.33.8195

Published Nov 20, 2025

Tracked Since Feb 18, 2026