News Snapshot:
SonicWall has patched a critical vulnerability in its firewall service which could have allowed crooks to access the underlying device. The company released a patch and a follow-up advisory, in which it explained discovering, and fixing, an improper access control bug. The flaw is tracked as CVE-2024-40766, and carries a severity score of 9.3, which makes it critical. "An improper access control vulnerability has been identified in the SonicWall SonicOS management access, potentially leading to unauthorized resource access and in specific conditions, causing the firewall to crash," the advisory reads. Patches and workarounds The company further explained that SonicWall Firewall...