A critical bug in SonicWall’s remote access gateway, Secure Mobile Access (SMA1000), is likely being used in zero-day attacks, allowing remote code execution (RCE) by unauthenticated actors. The issue, tracked as CVE-2025-23006, has received a critical rating of CVSS 9.8/10 for its ability to allow the deserialization of untrusted or malicious data before authentication. “Pre-authentication…
IT & Security News for Geeks