Deploy autonomous AI agents that reason, exploit, and validate complex vulnerability chains — not another scanner, an agentic system that thinks like a senior pentester.
CVE-2025-40599 is a critical severity vulnerability with a CVSS score of 9.1. No known exploits currently, and patches are available.
Please cite this page when referencing data from Strobes VI. Proper attribution helps support our vulnerability intelligence research.
Lower probability of exploitation
EPSS predicts the probability of exploitation in the next 30 days based on real-world threat data, complementing CVSS severity scores with actual risk assessment.
An authenticated arbitrary file upload vulnerability exists in the SMA 100 series web management interface. A remote attacker with administrative privileges can exploit this flaw to upload arbitrary files to the system, potentially leading to remote code execution.
| Vendor | Product |
|---|---|
| Sonicwall | Sma 500v |
| Sonicwall | Sma 210 |
| Sonicwall | Sma 500v Firmware |
| Sonicwall | Sma 410 |
| Sonicwall | Sma 210 Firmware |
| Sonicwall | Sma 410 Firmware |