SonicWall has released patches for three vulnerabilities in its NetExtender VPN client for Windows, including one high-severity flaw identified as CVE-2025-23008. NetExtender employs the SSL protocol, enabling remote users to securely access enterprise resources. The critical vulnerability has a CVSS score of 7.2 and involves improper privilege management, which could allow authenticated attackers to alter application configurations. This issue affects both 32-bit and 64-bit versions, now addressed in NetExtender Windows version 10.3.2.
In addition to the high-severity flaw, SonicWall’s update also remedied two medium-severity issues. These include the file path manipulation vulnerability CVE-2025-23010 and the arbitrary file deletion vulnerability CVE-2025-23009. Notably, these vulnerabilities do not affect the NetExtender client for Linux, ensuring that Linux users remain unaffected by these security concerns.
SonicWall strongly advises users to update to the latest version to mitigate these risks, even though there is currently no evidence of these vulnerabilities being exploited in the wild. The company’s products have been targeted by threat actors in the past, highlighting the importance of staying vigilant. Earlier in the year, a remote code execution vulnerability in Secure Mobile Access (CVE-2025-23006) was exploited as a zero-day, and an authentication bypass flaw in its firewalls (CVE-2024-53704) was exploited after the release of proof-of-concept code.
SonicWall’s timely response in patching these vulnerabilities underscores its commitment to security. Continuous vigilance is crucial given previous incidents, emphasizing the need for prompt updates to protect enterprise networks. SonicWall’s proactive measures demonstrate the importance of addressing potential vulnerabilities before they can be exploited.
