THREAT OPS › CVEs › CVE-2025-23006
CVE-2025-23006 — SonicWall SMA1000 Appliances Deserialization Vulnerability
SonicWall SMA1000 Appliance Management Console (AMC) and Central Management Console (CMC) contain a deserialization of untrusted data vulnerability, which can enable a remote, unauthenticated attacker to execute arbitrary OS commands.
Vulnerability details
- Affected productsSMA1000 Appliances
- KEV remediation due2025-02-14