Table of Contents
- Is Your Business at Risk? What to Do Now That SonicWall Is Retiring the SMA 100 Series.
- Why Is Support for the SMA 100 Ending Early?
- Known Exploited Vulnerabilities
- Persistent Threats
- Chained Vulnerabilities
- Which Products Are Affected?
- Upgrade Options
- Trade-In Discount
- 3 & Free Program
- What Should You Do Now?
Is Your Business at Risk? What to Do Now That SonicWall Is Retiring the SMA 100 Series.
If you use a SonicWall SMA 100 series device, you need to know about an important, upcoming change. SonicWall is ending support for these products on October 31, 2025. This is a big deal because it affects how you securely connect to your work resources. After this date, these devices will be deactivated, meaning they will no longer work.
This decision might feel sudden, especially if you recently renewed your service subscription. It’s understandable to feel frustrated by this news. You may feel like you’re being forced to upgrade on a tight schedule. Let’s walk through why this is happening and what your next steps should be.
Why Is Support for the SMA 100 Ending Early?
The main reason for this change is security. Older VPN appliances, including the SMA 100 series, have become a target for cybercriminals. In recent months, attackers have increasingly found and used security holes in these devices to break into company networks.
This isn’t just a SonicWall problem; it’s a challenge across the tech industry. However, to protect its customers, SonicWall decided it was safer to retire the older hardware and move users to more modern, secure solutions.
Several specific security flaws have been found and actively used by hackers:
Known Exploited Vulnerabilities
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added two vulnerabilities, CVE-2023-44221 and CVE-2024-38475, to its list of known exploited flaws. These could allow attackers to run their own code on the device.
Persistent Threats
Since at least late 2024, a hacking group has been targeting these devices, even fully patched ones. They have used stolen login details and installed hidden backdoors to maintain access and steal information.
Chained Vulnerabilities
Security researchers found that attackers could combine several other flaws (CVE-2025-32819, CVE-2025-32820, CVE-2025-32821) to gain complete control over a device, reboot it to factory settings, or upload malicious files.
Because of these serious risks, SonicWall has chosen to deactivate the devices instead of continuing to release patches, which may not be enough to protect against sophisticated attacks.
Which Products Are Affected?
This change impacts the entire SonicWall SMA 100 series. If your company uses any of the following, you will need to migrate to a new solution:
- SMA 200
- SMA 210
- SMA 400
- SMA 410
- SMA 500v (the virtual version)
This applies to any of these devices, especially those with support contracts that extend beyond October 31, 2025.
The term “end of support” can mean different things. In this case, it is more than just an end to technical help and software updates. SonicWall has stated that it will be deactivating all SMA 100 appliances on the cutoff date. This means the device will stop functioning for remote access, creating a serious operational risk for any business that relies on it.
This leaves customers in a tough spot. Some, like one user who recently renewed their subscription until 2026, feel that the company is taking a “creative” approach to its security problems, summed up as “forced migration is the new motto”. With a short deadline, you have to make a quick decision about how to keep your remote teams connected securely.
Upgrade Options
SonicWall is not leaving its customers without a solution. The company is guiding users toward its modern remote access product, Cloud Secure Edge (CSE). CSE is a cloud-based service that combines the functions of a VPN, web proxy, and firewall into a single solution without needing extra hardware on-site.
To help with this transition, SonicWall has introduced several upgrade offers:
Trade-In Discount
A special discount is available for customers who trade in their old SMA 100 devices for the new Cloud Secure Edge solution.
3 & Free Program
This promotion allows you to get a new, eligible next-generation firewall for free when you buy a three-year subscription to SonicWall’s security services. This bundle often includes licenses for Cloud Secure Edge.
These programs are designed to make the mandatory upgrade more affordable and provide a clear path to a more secure system.
What Should You Do Now?
With the October 31, 2025, deadline approaching, you must act now to avoid any disruption to your business.
- Confirm Your Hardware: First, verify if your company is using any of the affected SMA 100 series devices.
- Contact Your SonicWall Partner: Reach out to your IT provider or SonicWall partner immediately. They can provide details on the specific migration paths and promotions available to you.
- Evaluate Your Needs: Consider if Cloud Secure Edge is the right fit for your organization. It offers modern security features, but you’ll want to ensure it meets all of your specific operational needs.
- Plan Your Migration: Work with your partner to schedule the transition well before the deadline. Migrating your remote access solution takes time and planning to ensure a smooth switch for all your users.
While the accelerated timeline is challenging, the security threats to older hardware are real and significant. Taking proactive steps now will protect your corporate resources and ensure your remote workforce stays connected safely and securely.