SonicWall URGENT/11 vulnerabilities

PrintPrintDownload PDFDownload PDF
Added by Rudy Host (08/02/2019 - 15:16) , last updated by Rudy Host (08/02/2019 - 15:16)

On Monday, security researchers announced the URGENT/11 vulnerabilities in the VxWorks OS for embedded systems.  This software is in widespread use in everything from consumer electronics to medical devices, and even in nuclear plant control systems.  The flaws allowed for unauthenticated remote access and control of affected devices.  At the same time, SonicWall announced that many of their firewall lines were vulnerable to these flaws.

SWAN IT assessed the scope of the problem, evaluated the risks associated, and formed a plan to quickly update affected units at member libraries.  By Tuesday evening, all SWAN-managed firewalls were patched against the vulnerability.

If your library manages your own SonicWall, you should update it as soon as possible.  If you need assistance in locating the latest firmware, please open a ticket with your SonicWall model and we will provide the update file if we can.

For more information, please refer to the SonicWall blog post at https://blog.sonicwall.com/en-us/2019/07/wind-river-vxworks-and-urgent-11-patch-now/.