CVE-2025-40604
Essential information
- Published
- 20/11/2025 15:17
- Modified
- 12/12/2025 15:44
- Author
- —
- Creator
- —
- CVSS
- 9.8 CRITICAL (v3.1)
- CISA KEV
- No
- CWE
- —
- CVSS vector
-
—
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H—
CVSS metrics
- Access vector
- —
- Access complexity
- —
- Authentication
- —
- Confidentiality impact
- —
- Integrity impact
- —
- Availability impact
- —
- Exploitability
- —
- Remediation level
- —
- Report confidence
- —
- Temporal score
- —
- Attack vector
- NETWORK
- Attack complexity
- LOW
- Privileges required
- NONE
- User interaction
- NONE
- Scope
- UNCHANGED
- Confidentiality impact
- HIGH
- Integrity impact
- HIGH
- Availability impact
- HIGH
- Exploit code maturity
- —
- Remediation level
- —
- Report confidence
- —
- Temporal score
- —
- Attack vector
- —
- Attack complexity
- —
- Attack requirements
- —
- Privileges required
- —
- User interaction
- —
- Confidentiality (V)
- —
- Confidentiality (S)
- —
- Integrity (V)
- —
- Integrity (S)
- —
- Availability (V)
- —
- Availability (S)
- —
- Exploit maturity
- —
Description
Download of Code Without Integrity Check Vulnerability in the SonicWall Email Security appliance loads root filesystem images without verifying signatures, allowing attackers with VMDK or datastore access to modify system files and gain persistent arbitrary code execution.
NVD status
- Status
- Analyzed — CVE has had analysis completed and all data associations made.
- Source
- [email protected]
- NVD
- View on NVD
Affected products (CPE)
| Product | CPE |
|---|---|
| sonicwall / email security appliance 5000 firmware | cpe:2.3:o:sonicwall:email_security_appliance_5000_firmware:*:*:*:*:*:*:*:* |
| sonicwall / email security appliance 5000 | cpe:2.3:h:sonicwall:email_security_appliance_5000:-:*:*:*:*:*:*:* |
| sonicwall / email security appliance 5050 firmware | cpe:2.3:o:sonicwall:email_security_appliance_5050_firmware:*:*:*:*:*:*:*:* |
| sonicwall / email security appliance 5050 | cpe:2.3:h:sonicwall:email_security_appliance_5050:-:*:*:*:*:*:*:* |
| sonicwall / email security appliance 7000 firmware | cpe:2.3:o:sonicwall:email_security_appliance_7000_firmware:*:*:*:*:*:*:*:* |
| sonicwall / email security appliance 7000 | cpe:2.3:h:sonicwall:email_security_appliance_7000:-:*:*:*:*:*:*:* |
| sonicwall / email security appliance 7050 firmware | cpe:2.3:o:sonicwall:email_security_appliance_7050_firmware:*:*:*:*:*:*:*:* |
| sonicwall / email security appliance 7050 | cpe:2.3:h:sonicwall:email_security_appliance_7050:-:*:*:*:*:*:*:* |
| sonicwall / email security appliance 9000 firmware | cpe:2.3:o:sonicwall:email_security_appliance_9000_firmware:*:*:*:*:*:*:*:* |
| sonicwall / email security appliance 9000 | cpe:2.3:h:sonicwall:email_security_appliance_9000:-:*:*:*:*:*:*:* |