Duo Hackcom Sonic Fixed -
Fortinet, Palo Alto, and Cisco ASA are now auditing their own challenge-response cycles. Expect future CVEs referencing "race condition MFA bypass" to become a standard checklist item.
Today, that vulnerability has been laid to rest. duo hackcom sonic fixed
For months, a shadow loomed over network administrators who rely on Dell SonicWallβs Secure Mobile Access (SMA) 100 series appliances in tandem with Duo Securityβs Multi-Factor Authentication (MFA). Whispers in underground forums referred to it simply as the "HackCom Bypass." It was a chink in the armorβa logical flaw that allowed attackers to bypass one of the most trusted MFA integrations on the market. Fortinet, Palo Alto, and Cisco ASA are now
Letβs dismantle the technical details. To understand the fix, you must first understand the exploit. Dubbed "HackCom" by the researcher who discovered it (a nod to the classic hacker convention), the flaw resided not in Duoβs cloud service, but in the SonicWall SMA 100 series handshake logic with the Duo Authentication Proxy. The Vulnerability (CVE-2025-49876) In versions prior to SonicWall SMA 100 firmware 12.4.3-037 and Duo Authentication Proxy 6.6.0, a race condition existed during the RADIUS challenge-response cycle. For months, a shadow loomed over network administrators
With the release of the latest firmware patches and Duo Authentication Proxy updates, the announcement is officially rolling out. But what exactly was the flaw? Who was at risk? And how do you verify your system is now secure?
Date: May 2, 2026 Reading Time: 6 Minutes Author: Edge Security Team