How severe is CVE-2024-40762?

CVE-2024-40762 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2024-40762

9.8CRITICAL

Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) in the SonicOS SSLVPN authentication token generator that, in certain cases, can be predicted by an attacker potentially resulting i

Published: 1/9/2025Updated: 1/9/2025

Description

Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) in the SonicOS SSLVPN authentication token generator that, in certain cases, can be predicted by an attacker potentially resulting in authentication bypass.

AI AnalysisPowered by AI

References

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0003