Product Notice: SMA 100 Series - Multiple Vulnerabilities
Overview
- (CVE-2025-32819 ) Post-auth SSLVPN user arbitrary file delete vulnerability 8.8 (High)
- (CVE-2025-32820) Post-auth SSLVPN user Path Traversal vulnerability 8.3 (High)
- (CVE-2025-32821) Post-auth SSLVPN admin remote command injection vulnerability 6.7 (Medium)
SonicWall Secure Mobile Access 100 Series 10.2.1.14-75sv, including earlier versions, is affected by this vulnerability.
This vulnerability is unrelated to any other reported vulnerability on SonicOS SSL VPN or SMA 1000 products.
Product Impact
Please review the table below to see the products and their versions that are impacted:
| Impacted Product(s) | Impacted Versions |
| SMA 100 (200, 210, 400, 410, 500v (all hypervisors) | 10.2.1.14-75sv and earlier versions |
Remediation
| Impacted Product(s) | Impacted Versions | Fixed Version |
| SMA 100 (200, 210, 400, 410, 500v (all hypervisors) | 10.2.1.14-75sv and earlier versions | 10.2.1.15-81sv and higher versions |
SonicWall strongly advises Secure Mobile Access customers to upgrade to the latest release version.