CVE-2025-40604
BaseFortify
Publication date: 2025-11-20
Last updated on: 2025-12-12
Assigner: SonicWALL, Inc.
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| sonicwall | email_security_appliance_5000_firmware | to 10.0.33.8195 (inc) |
| sonicwall | email_security_appliance_5000 | * |
| sonicwall | email_security_appliance_5050_firmware | to 10.0.33.8195 (inc) |
| sonicwall | email_security_appliance_5050 | * |
| sonicwall | email_security_appliance_7000_firmware | to 10.0.33.8195 (inc) |
| sonicwall | email_security_appliance_7000 | * |
| sonicwall | email_security_appliance_7050_firmware | to 10.0.33.8195 (inc) |
| sonicwall | email_security_appliance_7050 | * |
| sonicwall | email_security_appliance_9000_firmware | to 10.0.33.8195 (inc) |
| sonicwall | email_security_appliance_9000 | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-494 | The product downloads source code or an executable from a remote location and executes the code without sufficiently verifying the origin and integrity of the code. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability involves the SonicWall Email Security appliance loading root filesystem images without verifying their signatures. This lack of integrity check allows attackers who have access to VMDK or datastore to modify system files, which can lead to persistent arbitrary code execution on the device.
How can this vulnerability impact me? :
An attacker exploiting this vulnerability can gain persistent arbitrary code execution on the SonicWall Email Security appliance by modifying system files. This could lead to unauthorized control over the device, potentially compromising email security and the overall network environment.