SonicWALL Connect Tunnel Link Following Denial-of-Service Vulnerability (CVE-2025-32817)
CVE number – CVE-2025-32817
This vulnerability allows local attackers to create a denial-of-service condition on affected installations of SonicWALL Connect Tunnel.
An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
The specific flaw exists within the SonicWall VPN service.
By creating a symbolic link, an attacker can abuse the service to create a file.
An attacker can leverage this vulnerability to create a persistent denial-of-service condition on the system.
More information at – https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2025-0007
I am one of the editors here at www.systemtek.co.uk I am a UK based technology professional, with an interest in computer security and telecoms.