Is the SRA at risk for CVE-2015-2248 vulnerability?
03/26/2020 4 11677
DESCRIPTION: Is the SRA at risk for CVE-2015-2248 vulnerability?
The SRA is potentially at risk for CVE-2015-2248. A researcher has discovered a vulnerability (CVE-2015-2248), that affects the SonicWall Secure Remote Access (SRA) user portal. The vulnerability enables someone to convince a user to create a malicious bookmark that can then be used to steal account information associated with the bookmark. However, this exploit is possible only through social engineering and therefore deemed a low risk. SonicWall always recommends our customers create a ‘Deny All’ policy on the SRA appliance and allow access to only trusted networks and hosts. Doing this renders the exploit ineffective.
Firmware versions at risk
All 7.5 versions prior to 18.104.22.168-38sv All 8.0 versions prior to 22.214.171.124-16sv
Recomended action: Upgrade 7.5 to 126.96.36.199-38sv (or newer) Upgrade 8.0 to 188.8.131.52-16sv (or newer)