Researchers have found a critical vulnerability(CVE-2014-6271 / CVE-2014-7169) in the GNU Bash Shell(aka “ShellShock”) which was reported on the NIST National Vulnerability Database on 9/24/2014.
Dell SonicWALL Firewalls are NOT Affected and Dell SonicWALL E-Class Secure Remote Access/Secure Mobile Access are NOT Affected
Affected SonicWALL Products:
- SMB Secure Remote Access (SMB SRA) Appliances, IF Web Application Firewall (WAF) is NOT Enabled
- Email Security Appliances
- Management and Reporting Appliances
Please immediately logon to MySonicWALL (https://www.mysonicwall.com/ ) , go to “My Products > Security Notice”, and carefully review the related Dell SonicWALL Service Bulletin to determine if firmware upgrade or configuration remediation is applicable.