CVE-2025-40604 in Email Security정보

요약

\~에 의해 MITRE • 2025. 11. 20.

Download of Code Without Integrity Check Vulnerability in the SonicWall Email Security appliance loads root filesystem images without verifying signatures, allowing attackers with VMDK or datastore access to modify system files and gain persistent arbitrary code execution.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

책임이 있는

Sonicwall

예약하다

2025. 04. 16.

공개

2025. 11. 20.

모더레이션

수락

항목

VDB-333046

CPE

준비됨

CWE

CWE-494 (확인됨)

CVSS

9.8 (NVD)

EPSS

0.00025

KEV

아니요

활동

매우 낮음

부문

Telecommunication, Finance, ...

출처

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-40604
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-40604
CVE Details	https://www.cvedetails.com/cve/CVE-2025-40604/

◂ 이전 개요 다음 ▸

Want to know what is going to be exploited?

We predict KEV entries!