Join the Conversation

To sign in, use your existing MySonicWall account. To create a free MySonicWall account click "Register".

BEAST CVE vulnerability

cyber_monkeycyber_monkey Newbie ✭
edited August 31 in Entry Level Firewalls

We are currently running SonicOS Enhanced I saw the below CVE affecting certain firewalls around this generation. Does anyone know if our firewall is vulnerable to this? And if so does anyone know how to disable the appropriate CBC ciphers?

Category: Entry Level Firewalls

Best Answer


  • Hi @MustafaA, are you able to speak to this?

  • Hi @cyber_monkey, can I move this post from Content Filtering Client to Entry Level Firewalls?

  • cyber_monkeycyber_monkey Newbie ✭

    that's fine @Community Manager

  • LarryLarry All-Knowing Sage ✭✭✭✭

    @cyber_monkey was released a year ago (August 2022). There have been several interim maintenance releases since then. was issued in April 2023.

    And the reason you haven't upgraded is...

  • cyber_monkeycyber_monkey Newbie ✭

    @Larry I would like to upgrade. I'm relatively new to the company and I am addressing these issues as I go. Any helpful upgrade guides? When will our version reach EOL?

  • MustafaAMustafaA SonicWall Employee

    @cyber_monkey , we always suggest our customers to keep the firmware up-to-date. Since all Gen6 firewalls are currently in Active Retirement Mode, there are bug or vulnerability fixes in each new firmware release. Hence, it is always a good idea to update the firewall as new firmware version is available.

    Product Life Cycle Tables

  • MustafaAMustafaA SonicWall Employee

    Also, each firmware version has Release Notes, which highlights what issues or vulnerabilities are fixed with it. You can download the firmware and the Release Notes via your account.

  • cyber_monkeycyber_monkey Newbie ✭


    Any chance we will need to upgrade from 6.5 to 7 ? Will there be a point where you are only supporting 7?

  • MustafaAMustafaA SonicWall Employee
    edited August 31

    Yes, some of the Gen6 models will be end of life in2025 and the rest in 2026. Rather than waiting until the last minute, it might be a good idea to transition to Gen7 firewalls, which are more powerful (CPU, Memory etc.).

    In the Product Lifecycle table the term is "End of Support" for end of life.

  • LarryLarry All-Knowing Sage ✭✭✭✭

    @cyber_monkey - just to be clear. You are running a Gen 6.5 device. To run a Gen 7 device you need to get a new device. There is no firmware upgrade path on the old hardware.

    Currently, and through the end of the year (or while supplies last), SonicWall is offering a 3 & Free promotion for Gen 7 devices that now permits secure upgrade of existing SW firewalls as well as trade-ins from competitive vendors.

    Contact your sales rep or channel account manager for more information.

Sign In or Register to comment.