Skip to main content

Microsoft CVE-2024-12802

CRITICAL
Authentication Bypass by Primary Weakness (CWE-305)
2025-01-09 PSIRT@sonicwall.com
9.1
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
9.1 CRITICAL
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
None

Lifecycle Timeline

2
Analysis Generated
Mar 28, 2026 - 18:02 vuln.today
CVE Published
Jan 09, 2025 - 09:15 nvd
CRITICAL 9.1

DescriptionCVE.org

SSL-VPN MFA Bypass in SonicWALL SSL-VPN can arise in specific cases due to the separate handling of UPN (User Principal Name) and SAM (Security Account Manager) account names when integrated with Microsoft Active Directory, allowing MFA to be configured independently for each login method and potentially enabling attackers to bypass MFA by exploiting the alternative account name.

AnalysisAI

SSL-VPN MFA Bypass in SonicWALL SSL-VPN can arise in specific cases due to the separate handling of UPN (User Principal Name) and SAM (Security Account Manager) account names when integrated with. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Technical ContextAI

This vulnerability is classified under CWE-305. SSL-VPN MFA Bypass in SonicWALL SSL-VPN can arise in specific cases due to the separate handling of UPN (User Principal Name) and SAM (Security Account Manager) account names when integrated with Microsoft Active Directory, allowing MFA to be configured independently for each login method and potentially enabling attackers to bypass MFA by exploiting the alternative account name.

Affected ProductsAI

See vendor advisory for affected versions.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

CVE-2025-23008 HIGH
7.2 Apr 10

An improper privilege management vulnerability in the SonicWall NetExtender Windows (32 and 64 bit) client allows a low

CVE-2026-4112 HIGH
7.2 Apr 09

SQL injection in SonicWall SMA1000 series appliances allows authenticated attackers with read-only administrator privile

CVE-2025-23010 HIGH
7.2 Apr 10

An Improper Link Resolution Before File Access ('Link Following') vulnerability in SonicWall NetExtender Windows (32 and

CVE-2025-23009 HIGH
7.2 Apr 10

A local privilege escalation vulnerability in SonicWall NetExtender Windows (32 and 64 bit) client which allows an attac

CVE-2026-4113 HIGH
7.2 Apr 09

SonicWall SMA1000 SSL VPN appliances allow remote authenticated administrators to enumerate valid user credentials throu

CVE-2026-4116 HIGH
7.2 Apr 09

Two-factor authentication bypass in SonicWall SMA1000 SSL-VPN allows remote attackers with valid SSLVPN credentials to c

CVE-2026-4114 MEDIUM
6.6 Apr 09

Remote authenticated SonicWall SMA1000 SSLVPN administrators can bypass AMC TOTP (Time-based One-Time Password) authenti

CVE-2025-32817 MEDIUM
6.1 Apr 16

A Improper Link Resolution vulnerability (CWE-59) in the SonicWall Connect Tunnel Windows (32 and 64 bit) client, this r

CVE-2026-3468 MEDIUM
4.8 Mar 31

Stored Cross-Site Scripting (XSS) in SonicWall Email Security allows authenticated admin users to inject and execute arb

CVE-2026-3470 LOW
3.8 Mar 31

Database corruption in SonicWall Email Security appliance via improper input sanitization allows authenticated admin use

CVE-2026-3469 LOW
2.7 Mar 31

SonicWall Email Security appliance becomes unresponsive due to improper input validation when an authenticated administr

CVE-2025-40604 CRITICAL
9.8 Nov 20

Download of Code Without Integrity Check Vulnerability in the SonicWall Email Security appliance loads root filesystem i

Share

CVE-2024-12802 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy