SonicWALL SSLVPN MFA Bypass via UPN/SAM Splitting
CVE-2024-12802 Published on January 9, 2025
SSL-VPN MFA Bypass in SonicWALL SSL-VPN can arise in specific cases due to the separate handling of UPN (User Principal Name) and SAM (Security Account Manager) account names when integrated with Microsoft Active Directory, allowing MFA to be configured independently for each login method and potentially enabling attackers to bypass MFA by exploiting the alternative account name.
Vulnerability Analysis
CVE-2024-12802 is exploitable with network access, and does not require authorization privileges or user interaction. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have a high impact on confidentiality and integrity, and no impact on availability.
Weakness Type
Authentication Bypass by Primary Weakness
The authentication algorithm is sound, but the implemented mechanism can be bypassed as the result of a separate weakness that is primary to the authentication error.
Products Associated with CVE-2024-12802
Want to know whenever a new CVE is published for SonicWall Sonicos? stack.watch will email you.
Affected Versions
SonicWall SonicOS:- Version 6.5.4.4-44v-21-2457 and older versions is affected.
- Version 6.5.4.15-117n and older versions is affected.
- Version 7.0.1-5161 and older versions is affected.
- Version 7.1.1-7058 and older versions is affected.
- Version 7.1.2-7019 is affected.
- Version 8.0.0-8035 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.