SonicWall has revealed that two now-patched security flaws impacting its SMA100 Secure Mobile Access (SMA) appliances have been exploited in the wild. The vulnerabilities in question are listed below - CVE-2023-44221 (CVSS score: 7.2) - Improper neutralization of special elements in the SMA100 SSL-VPN management interface allows a remote authenticated attacker with administrative privilege to
![]()
source https://thehackernews.com/2025/05/sonicwall-confirms-active-exploitation.html
source https://thehackernews.com/2025/05/sonicwall-confirms-active-exploitation.html