Lucene search
+L

53 matches found

Rapid7 Blog
Rapid7 Blog
added 4 days ago4 views

Rapid7 MDR Team Discovers New SonicWall SMA1000 Zero Days being Actively Exploited (CVE-2026-15409, CVE-2026-15410)

Overview On July 14, 2026, SonicWall published a security advisory addressing two vulnerabilities affecting SMA1000 Series remote access appliances, including the critical server-side request forgery SSRF vulnerability CVE-2026-15409 CVSS 10.0 and the high-severity code injection vulnerability...

10CVSS7.6AI score0.01486EPSS
Exploits5
NCSC
NCSC
added 4 days ago10 views

Zero-day vulnerabilities are exploited in SonicWall SMA1000 devices.

SonicWall has identified two vulnerabilities in the SonicWall SMA1000 appliance. The vulnerability with the identifier CVE-2026-15409 involves Server-Side Request Forgery SSRF in the Work Place interface, allowing an unauthorized attacker to send requests to the device to unintended locations. Th...

10CVSS6.4AI score0.01486EPSS
Exploits5References1
Positive Technologies
Positive Technologies
added 5 days ago7 views

PT-2026-58291

Name of the Vulnerable Software and Affected Versions SonicWall SMA 1000 affected versions not specified Description An issue exists in the Appliance Work Place interface due to insufficient server-side request validation. This allows a remote unauthenticated attacker to perform a Server-Side...

10CVSS8.7AI score0.01266EPSS
Exploits4References100
RedhatCVE
RedhatCVE
added 2026/04/13 7:25 p.m.11 views

CVE-2026-4116

Improper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN user to bypass Workplace/Connect Tunnel TOTP authentication...

7.2CVSS5.8AI score0.00417EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/04/13 7:25 p.m.7 views

CVE-2026-4112

Improper neutralization of special elements used in an SQL command “SQL Injection” in SonicWall SMA1000 series appliances allows a remote authenticated attacker with read-only administrator privileges to escalate privileges to primary administrator...

7.2CVSS5.9AI score0.00613EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/04/13 7:25 p.m.6 views

CVE-2026-4114

Improper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN admin to bypass AMC TOTP authentication...

6.6CVSS5.8AI score0.00597EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/09 3:35 p.m.5 views

EUVD-2026-20904

An observable response discrepancy vulnerability in the SonicWall SMA1000 series appliances allows a remote attacker to enumerate SSL VPN user credentials...

7.1AI score0.00363EPSS
Exploits0References2
EUVD
EUVD
added 2026/04/09 3:35 p.m.8 views

EUVD-2026-20906

Improper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN admin to bypass AMC TOTP authentication...

7.1AI score0.00597EPSS
Exploits0References2
NVD
NVD
added 2026/04/09 3:16 p.m.12 views

CVE-2026-4116

Improper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN user to bypass Workplace/Connect Tunnel TOTP authentication...

7.2CVSS0.00417EPSS
Exploits0References1
NVD
NVD
added 2026/04/09 3:16 p.m.10 views

CVE-2026-4113

An observable response discrepancy vulnerability in the SonicWall SMA1000 series appliances allows a remote attacker to enumerate SSL VPN user credentials...

7.2CVSS0.00363EPSS
Exploits0References1
NVD
NVD
added 2026/04/09 3:16 p.m.12 views

CVE-2026-4114

Improper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN admin to bypass AMC TOTP authentication...

6.6CVSS0.00597EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/09 2:27 p.m.5 views

CVE-2026-4116

Improper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN user to bypass Workplace/Connect Tunnel TOTP authentication...

5.8AI score0.00417EPSS
Exploits0References1
CVE
CVE
added 2026/04/09 2:27 p.m.27 views

CVE-2026-4116

SonicWall SMA1000 series appliances are affected by CVE-2026-4116 (Unicode encoding handling) that allows a remote authenticated SSLVPN user to bypass Workplace/Connect Tunnel TOTP authentication. The issue is part of a set of vulnerabilities disclosed by SonicWall (SNWLID-2026-0003). Affected de...

7.2CVSS7.1AI score0.00417EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/04/09 2:27 p.m.25 views

CVE-2026-4116

Improper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN user to bypass Workplace/Connect Tunnel TOTP authentication...

0.00417EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/09 2:25 p.m.5 views

CVE-2026-4114

Improper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN admin to bypass AMC TOTP authentication...

7.1AI score0.00597EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/09 2:25 p.m.24 views

CVE-2026-4114

Improper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN admin to bypass AMC TOTP authentication...

0.00597EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/09 2:23 p.m.3 views

CVE-2026-4113

An observable response discrepancy vulnerability in the SonicWall SMA1000 series appliances allows a remote attacker to enumerate SSL VPN user credentials...

7.1AI score0.00363EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/04/09 2:23 p.m.5 views

CVE-2026-4113

An observable response discrepancy vulnerability in the SonicWall SMA1000 series appliances allows a remote attacker to enumerate SSL VPN user credentials...

5.8AI score0.00363EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/09 2:22 p.m.2 views

CVE-2026-4112

Improper neutralization of special elements used in an SQL command “SQL Injection” in SonicWall SMA1000 series appliances allows a remote authenticated attacker with read-only administrator privileges to escalate privileges to primary administrator...

7.3AI score0.00613EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/09 2:22 p.m.26 views

CVE-2026-4112

Improper neutralization of special elements used in an SQL command “SQL Injection” in SonicWall SMA1000 series appliances allows a remote authenticated attacker with read-only administrator privileges to escalate privileges to primary administrator...

0.00613EPSS
Exploits0References1
Rows per page
Query Builder