The SMA 100 section of SonicWall's blog update specified that while the product is under investigation, "SMA 100 series products may be used safely in common deployment use cases." On a product notification page dedicated to the investigation, the company elaborated that current customers "may continue to use NetExtender for remote access with the SMA 100 series. SonicWall Firewalls, SMA 1000 series (the enterprise version of the SMB-focused 100 series) and SonicWave Access Points have likewise been ruled out. 23 clarified that only the SMA 100 series is under investigation and NetExtender has been ruled out.
While the original post listed version 10.x on both SonicWall's NetExtender VPN client and Secure Mobile Access (SMA) products, an update to the blog published late Jan. The security vendor disclosed in a blog post Friday evening that it "identified a coordinated attack on its internal systems by highly sophisticated threat actors exploiting probable zero-day vulnerabilities on certain SonicWall secure remote access products."