CVE-2024-40765

Critical

Published: 09 January 2025

Published

09 January 2025

Modified

15 April 2026

KEV Added

—

Patch

—

CVSS Score 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score 0.0218 84.4th percentile

Risk Priority 21 60% EPSS · 20% KEV · 20% CVSS

Description

An Integer-based buffer overflow vulnerability in the SonicOS via IPSec allows a remote attacker in specific conditions to cause Denial of Service (DoS) and potentially execute arbitrary code by sending a specially crafted IKEv2 payload.

Security Summary

CVE-2024-40765 is an integer-based buffer overflow vulnerability (CWE-190) in SonicOS via IPSec. It affects SonicWall SonicOS firewalls, particularly the component handling IKEv2 payloads, as disclosed on January 9, 2025. The flaw enables a remote attacker under specific conditions to trigger the overflow by sending a specially crafted IKEv2 payload.

A remote, unauthenticated attacker can exploit this vulnerability over the network with low attack complexity and no user interaction required, as reflected in its CVSS v3.1 base score of 9.8 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H). Successful exploitation can cause a denial of service (DoS) or potentially lead to arbitrary code execution, granting high impacts on confidentiality, integrity, and availability.

The SonicWall PSIRT advisory provides details on mitigation, available at https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0013.

Details

CWE(s): CWE-190

References

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0013
PSIRT@sonicwall.com