At Comms Express, your network security is our top priority. Today, we’re alerting all SonicWall customers and partners to take immediate action regarding a critical security vulnerability recently disclosed by SonicWall.
What’s Happening?
On January 7, 2025, SonicWall informed users about multiple vulnerabilities affecting their firewall systems. Among the most critical is CVE-2024-53704, a flaw that has now seen the release of public proof-of-concept (POC) exploits by independent security researchers. This significantly increases the risk of active exploitation by malicious actors.
Why This Matters
With exploitation methods now publicly available, CVE-2024-53704 is no longer a theoretical risk, it’s a real and present danger. If unpatched, attackers could gain unauthorised access or disrupt your network, putting sensitive data, systems, and operations at risk.
What You Need to Do Now
SonicWall urges all users to immediately patch affected firewalls. Here’s how:
✅ Firmware Updates
-
Gen 7 Firewalls: Update to SonicOS 7.1.3-7015 or higher
-
TZ80 Firewalls: Update to SonicOS 8.0.0-8037 or higher
If you haven’t yet applied these updates, do so as soon as possible.
⚠️ If You Cannot Patch Immediately
If updating is not currently feasible:
-
Disable SSL VPN, or
-
Restrict SSL VPN Connections to known IP addresses/users
This temporary mitigation can reduce exposure but is not a substitute for patching.
For full technical details, view the official Sonicwall CVE notice here:
🔗 CVE-2024-53704 – SonicWall PSIRT
A Final Note on Product Support
Please be aware: SonicWall does not provide support or updates for products that have reached End-of-Support (EOS) status. If your device is no longer supported, upgrading to a current model is the safest course of action.
👉 Check the SonicWall Product Lifecycle Table
Stay Secure with Comms Express
We’re here to help. Whether you need guidance on firmware updates, product lifecycle status, or upgrading your SonicWall device, reach out to our expert team today.
Don’t wait — act now to protect your network.
