1. Home
  2. Mapping Frameworks
  3. Known Exploited Vulnerabilities Home
  4. SonicWall SonicOS SSLVPN Improper Authentication Vulnerability

Known Exploited Vulnerabilities CVE-2024-53704

SonicWall SonicOS contains an improper authentication vulnerability in the SSLVPN authentication mechanism that allows a remote attacker to bypass authentication.

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name Notes
CVE-2024-53704 SonicWall SonicOS SSLVPN Improper Authentication Vulnerability exploitation_technique T1199 Trusted Relationship
Comments
Due to improper session cookie validation in SonicOS, an attacker can hiijack an active session without any credentials.
References
  1. https://bishopfox.com/blog/sonicwall-cve-2024-53704-ssl-vpn-session-hijacking
CVE-2024-53704 SonicWall SonicOS SSLVPN Improper Authentication Vulnerability exploitation_technique T1212 Exploitation for Credential Access
Comments
Due to improper session cookie validation in SonicOS, an attacker can hiijack an active session without any credentials.
References
  1. https://bishopfox.com/blog/sonicwall-cve-2024-53704-ssl-vpn-session-hijacking
CVE-2024-53704 SonicWall SonicOS SSLVPN Improper Authentication Vulnerability primary_impact T1078.004 Cloud Accounts
Comments
Due to improper session cookie validation in SonicOS, an attacker can hiijack an active session without any credentials.
References
  1. https://bishopfox.com/blog/sonicwall-cve-2024-53704-ssl-vpn-session-hijacking
CVE-2024-53704 SonicWall SonicOS SSLVPN Improper Authentication Vulnerability primary_impact T1083 File and Directory Discovery
Comments
Due to improper session cookie validation in SonicOS, an attacker can hiijack an active session without any credentials.
References
  1. https://bishopfox.com/blog/sonicwall-cve-2024-53704-ssl-vpn-session-hijacking
CVE-2024-53704 SonicWall SonicOS SSLVPN Improper Authentication Vulnerability secondary_impact T1021.001 Remote Desktop Protocol
Comments
Due to improper session cookie validation in SonicOS, an attacker can hiijack an active session without any credentials.
References
  1. https://bishopfox.com/blog/sonicwall-cve-2024-53704-ssl-vpn-session-hijacking