SonicWall NetExtender < 10.3.2 Multiple Vulnerabilities (SNWLID-2025-0006)

high Nessus Plugin ID 234626

Language:

Synopsis

The remote host is affected by an multiple vulnerabilities vulnerability.

Description

The version of SonicWall NetExtender installed on the remote host is prior to 10.3.2. It is, therefore, affected by multiple vulnerabilities as referenced in the SNWLID-2025-0006 advisory.

- An improper privilege management vulnerability in the SonicWall NetExtender Windows (32 and 64 bit) client allows a low privileged attacker to modify configurations. (CVE-2025-23008)

- A local privilege escalation vulnerability in SonicWall NetExtender Windows (32 and 64 bit) client which allows an attacker to trigger an arbitrary file deletion. (CVE-2025-23009)

- An Improper Link Resolution Before File Access ('Link Following') vulnerability in SonicWall NetExtender Windows (32 and 64 bit) client which allows an attacker to manipulate file paths. (CVE-2025-23010)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Solution

Upgrade to the relevant fixed version referenced in the vendor security advisory.

Plugin Details

Severity: High

ID: 234626

File Name: sonicwall_SNWLID-2025-0006.nasl

Version: 1.1

Type: local

Agent: windows

Family: Windows

Published: 4/18/2025

Updated: 4/18/2025

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Critical

Score: 9.2

CVSS v2

Risk Factor: Medium

Base Score: 6.8

Vector: CVSS2#AV:L/AC:L/Au:S/C:C/I:C/A:C

CVSS Score Source: CVE-2025-23008

CVSS v3

Risk Factor: High

Base Score: 7.2

Vector: CVSS:3.0/AV:P/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

Vulnerability Information

CPE: cpe:/a:sonicwall:netextender

Required KB Items: installed_sw/SonicWall NetExtender

Patch Publication Date: 4/8/2025

Vulnerability Publication Date: 7/8/2025

Reference Information

CVE: CVE-2025-23008, CVE-2025-23009, CVE-2025-23010

IAVB: 2025-B-0059

Detections

Analytics