H-ISAC TLP White Vulnerability Bulletin: Update: SonicWall SMA 100 Series Product Zero-Day Vulnerability

February 4, 2021

On January 31, 2021, a third-party threat research team from the NCC Group informed the SonicWall Product Security Incident Response Team (PSIRT) about a zero-day vulnerability affecting the Secure Mobile Access (SMA) 100 series product. Subsequently, the SonicWall security and engineering teams confirmed the vulnerable code and have begun working on a patch to be available by the end of the day.

Key Resources

Related Resources

Guides/Reports
Strategies for Cyber Preparedness in Health Care
Advisory
Hospitals That Are Oracle Customers Urged to Take Immediate Action to Address Security Vulnerability
Public
Issue Landing Page
Cybersecurity and Risk Advisory Service
Guides/Reports
Cybersecurity and Risk Advisory Services
Standards/Guidelines
Become an AHA Preferred Cybersecurity and Risk Provider
Public
Issue Landing Page
AHA Preferred Cybersecurity & Risk Provider Program