Unrated severityNVD Advisory· Published Jul 23, 2025· Updated Jul 25, 2025
CVE-2025-40599
CVE-2025-40599
Description
An authenticated arbitrary file upload vulnerability exists in the SMA 100 series web management interface. A remote attacker with administrative privileges can exploit this flaw to upload arbitrary files to the system, potentially leading to remote code execution.
Affected products
1- SonicWall/SMA 100 Seriesv5Range: 10.2.1.15-81sv and earlier versions
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0014mitrevendor-advisory
News mentions
0No linked articles in our index yet.