THREATOPS
THREAT OPSCVEs › CVE-2025-23006

CVE-2025-23006 — SonicWall SMA1000 Appliances Deserialization Vulnerability

CISA KEVExploited: confirmedSonicWall

SonicWall SMA1000 Appliance Management Console (AMC) and Central Management Console (CMC) contain a deserialization of untrusted data vulnerability, which can enable a remote, unauthenticated attacker to execute arbitrary OS commands.

Vulnerability details