SonicWall suffers security vulnerability, affecting millions of managed devices and organizations
United Kingdom security researchers say it took SonicWall more than two weeks to patch a vulnerability in 1.9 million SonicWall user groups, affecting some 10 million managed devices and 500,000 organizations. In a blog released by Pen Test Partners, the researchers explained that the vulnerability, an insecure direct object reference (IDOR) in the ‘partyGroupID’ API request, allowed any user to be added to any group at any organization.
"Using this degree of access, one could modify firewall rules and/or VPN access, giving oneself remote access in to any organization," says the researcher. "One could inject ransomware, or any manner of other attacks should one so wish. That’s a breach of customer networks directly as a result of their security products."