SonicWall has urged customers to apply patches for a high-severity vulnerability in SonicOS. The flaw affects SSLVPN and enables hackers to crash firewalls. The advisory was issued on November 21, 2025.
SonicWall, a cybersecurity firm, has notified its customers about a critical issue in its SonicOS operating system. According to the company's guidance, the vulnerability in the SSLVPN component poses a high-severity risk, allowing unauthorized attackers to disrupt firewall operations by causing crashes.
The flaw was identified and disclosed through TechRadar's reporting on November 21, 2025. SonicWall recommends immediate patching to mitigate potential exploits, emphasizing the importance of updating affected systems promptly to maintain network security.
No specific details on the exact nature of the vulnerability or confirmed incidents were provided in the initial advisory. Customers using SonicWall firewalls running vulnerable versions of SonicOS are advised to check the official patch release for compatibility and deployment instructions.
This development underscores ongoing challenges in securing network appliances against remote attacks, particularly in SSLVPN functionalities that are widely used for remote access.