CVE-2025-40599 Information

Description

An authenticated arbitrary file upload vulnerability exists in the SMA 100 series web management interface. A remote attacker with administrative privileges can exploit this flaw to upload arbitrary files to the system potentially leading to remote code execution.

Reference

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0014

Related CNNVD

CNNVD-202507-3023 (Published: 2025-07-23)