CVE-2024-40766

Vulnerability updated a year ago (2024-08-26T23:15:17.932Z)

Download STIX

Preview STIX

Not enough context has been learned about CVE-2024-40766 for a description yet. However we're tracking it as a Vulnerability profile. Vulnerability: A flaw in software design or implementation

Description last updated:

What's your take? (Question 1 of 3)

Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.

Aliases We are not currently tracking any aliases

Miscellaneous Associations

Other elements of context that could aid in the identification of relevance

Sonicwall

Exploit

Ransomware

Analyst Notes & Discussion

Be the first to leave your mark here! Log in to share your views and vote.

Associated Malware

To see the evidence that has resulted in these malware associations, create a free account

Alias Description	Association Type	Votes
The Akira Malware is associated with CVE-2024-40766. Akira is a potent ransomware that has been active since 2023, known for its aggressive encryption tactics and swift deployment. This malware, which brings a unique '80s aesthetic to the dark web, has quickly risen in prominence within the cybercrime landscape. It has targeted hundreds of victims glo	Unspecified	2

Source Document References

Information about the CVE-2024-40766 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more

Source Link	CreatedAt	Title
Securityaffairs	18 days ago	Attackers exploit valid logins in SonicWall SSL VPN compromise
InfoSecurity-magazine	a month ago	SonicWall SSL VPN Attacks Escalate, Bypassing MFA
Securityaffairs	a month ago	Akira Ransomware bypasses MFA on SonicWall VPNs
Checkpoint	a month ago	15th September – Threat Intelligence Report - Check Point Research
Securityaffairs	2 months ago	Akira Ransomware exploits year-old SonicWall flaw with multiple vectors
Securityaffairs	3 months ago	SonicWall dismisses zero-day fears after Ransomware probe
InfoSecurity-magazine	3 months ago	SonicWall: Attacks Linked to Legacy Bug and Password Use
InfoSecurity-magazine	4 months ago	Automation and Vulnerability Exploitation Drive Mass Ransomware Breach
Securelist	a year ago	Non-mobile threat statistics for Q3 2024
Securityaffairs	a year ago	Fog and Akira ransomware attacks exploit SonicWall VPN flaw
InfoSecurity-magazine	a year ago	Critical SonicWall SSLVPN Bug Exploited By Ransomware Actors
Securityaffairs	a year ago	U.S. CISA adds SonicWall SonicOS, ImageMagick and Linux Kernel bugs to its Known Exploited Vulnerabilities catalog
CISA	a year ago	CISA Adds Three Known Exploited Vulnerabilities to Catalog \| CISA
DARKReading	a year ago	Akira Ransomware Actors Exploit SonicWall Bug for RCE
Securityaffairs	a year ago	SonicWall warns that SonicOS bug exploited in attacks
Checkpoint	a year ago	2nd September – Threat Intelligence Report - Check Point Research
Securityaffairs	a year ago	Security Affairs newsletter Round 487 by Pierluigi Paganini – INTERNATIONAL EDITION
BankInfoSecurity	a year ago	Breach Roundup: Ex-Verizon Worker Cops to Spying for China
Securityaffairs	a year ago	SonicWall addressed improper access control issue in its firewalls