CVE-2025-40597

Published Jul 23, 2025

Last updated 24 days ago

CVSS high 7.5
SMA100

Overview

AI description

Automated description summarized from trusted sources.

CVE-2025-40597 is a heap-based buffer overflow vulnerability found in the SMA100 series web interface. It can be triggered by a remote, unauthenticated attacker. The vulnerability lies in the mod_httprp.so component, which handles HTTP requests. Specifically, it occurs during the parsing of the Host: header. The vulnerability is due to an incorrect use of the "safe" version of the sprintf function, which allows an attacker to write past allocated memory when crafting a malicious Host: header. This can corrupt adjacent memory and potentially lead to a denial of service or remote code execution.

Description
A Heap-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attacker to cause Denial of Service (DoS) or potentially results in code execution.
Source
PSIRT@sonicwall.com
NVD status
Analyzed
Products
sma_500v_firmware, sma_210_firmware, sma_410_firmware

Risk scores

CVSS 3.1

Type
Secondary
Base score
7.5
Impact score
3.6
Exploitability score
3.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity
HIGH

Weaknesses

PSIRT@sonicwall.com
CWE-122

Social media

Hype score
Not currently trending

  1. We are now scanning for CVE-2025-40596, CVE-2025-40597 and CVE-2025-40598. In other (related news), HttpIOCScan has a new template to detect backdoors on SonicWall SMAs: https://t.co/2KqQXf4C4W https://t.co/3jVoyTmfP3

    @leak_ix

    1 Aug 2025

    7889 Impressions

    20 Retweets

    89 Likes

    48 Bookmarks

    1 Reply

    0 Quotes

  2. 2025-07-29 の人気記事はコチラでした。(自動ツイート) #Hacker_Trends ――― Stack Overflows, Heap Overflows, and Existential Dread (SonicWall SMA100 CVE-2025-40596, CVE-2025-40597 and CVE-2025-40598) https://t.co/ZQvOvq2f5n https://t.co/MvjslfRtDF

    @motikan2010

    30 Jul 2025

    105 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  3. ⚠️Vulnerabilidades en SonicWall SMA 100 ❗CVE-2025-40597 ❗CVE-2025-40596 ➡️Más info: https://t.co/KJngjLW5SF https://t.co/rdCcIRxMOu

    @CERTpy

    29 Jul 2025

    117 Impressions

    0 Retweets

    1 Like

    1 Bookmark

    0 Replies

    0 Quotes

  4. Stack Overflows, Heap Overflows, and Existential Dread (SonicWall SMA100 CVE-2025-40596, CVE-2025-40597 and CVE-2025-40598) https://t.co/Zerp9O3rP0

    @Dinosn

    29 Jul 2025

    2082 Impressions

    3 Retweets

    12 Likes

    2 Bookmarks

    0 Replies

    0 Quotes

  5. Stack Overflows, Heap Overflows, and Existential Dread (SonicWall SMA100 CVE-2025-40596, CVE-2025-40597 and CVE-2025-40598) https://t.co/BI4s1mxx8J https://t.co/UuVcbXV64G

    @secharvesterx

    29 Jul 2025

    59 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  6. CVE-2025-40597 Heap-Based Buffer Overflow in SonicWall SMA100 Series Web... https://t.co/HMJZTWznEf Don't wait vulnerability scanning results: https://t.co/oh1APvMMnd

    @VulmonFeeds

    23 Jul 2025

    75 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  7. CVE-2025-40597 A Heap-based buffer overflow vulnerability in the SMA100 series web interface allows remote, unauthenticated attacker to cause Denial of Service (DoS) or potentially … https://t.co/Blr8JnD1kd

    @CVEnew

    23 Jul 2025

    213 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

Configurations

References

Sources include official advisories and independent security research.