CVE-2024-53705

Name of the Vulnerable Software and Affected Versions SonicOS (affected versions not specified)

Description A Server-Side Request Forgery vulnerability in the SonicOS SSH management interface allows a remote attacker to establish a TCP connection to an IP address on any port when the user is logged in to the firewall. This issue is related to insufficient validation of requests on the server side. The vulnerability can be exploited by a remote attacker to perform an SSRF attack.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.