Skip to content
  • Home
  • Cyber Map
  • About Us – Contact
  • Disclaimer
  • Terms and Rules
  • Privacy Policy
Cyber Web Spider Blog – News

Cyber Web Spider Blog – News

Globe Threat Map provides a real-time, interactive 3D visualization of global cyber threats. Monitor DDoS attacks, malware, and hacking attempts with geo-located arcs on a rotating globe. Stay informed with live logs and archive stats.

  • Home
  • Cyber Map
  • Cyber Security News
  • Security Week News
  • The Hacker News
  • How To?
  • Toggle search form
SonicWall Urges Immediate Fixes for Critical Firewall Flaws

SonicWall Urges Immediate Fixes for Critical Firewall Flaws

Posted on July 15, 2026 By CWS

SonicWall has released a critical security alert concerning two vulnerabilities that have been discovered in its SMA1000 Series appliances. The company has emphasized that these vulnerabilities are being actively exploited by attackers, posing a real-world threat to affected systems.

Details of the SonicWall Vulnerabilities

The most severe of these issues, identified as CVE-2026-15409, has been assigned a top Common Vulnerability Scoring System (CVSS) score of 10.0, indicating its critical nature. This flaw can be leveraged remotely without any need for authentication, significantly increasing its potential impact.

These vulnerabilities are affecting SonicWall SMA1000 models 6210, 7210, and 8200, particularly those running specific platform-hotfix versions, namely 12.4.3 and 12.5.0.

Impact and Technical Details

SonicWall has clarified that these security issues do not affect the SSL-VPN services of its firewall products or the SMA 100 Series line. The CVE-2026-15409 vulnerability is a server-side request forgery (SSRF) issue found within the SMA1000 Workplace interface. This flaw allows an unauthenticated attacker to redirect requests to internal or external locations, potentially accessing services otherwise unreachable from the internet.

The second vulnerability, CVE-2026-15410, involves post-authentication code injection within the SMA1000 Appliance Management Console, with a CVSS score of 7.2. Although it requires administrator access, exploiting this can lead to full control over the system if credentials are compromised.

Recommended Actions and Mitigation

The SonicWall Product Security Incident Response Team (PSIRT) has been actively investigating exploitation incidents of these vulnerabilities. Although no specific details about the attackers or methods have been disclosed, SonicWall urges immediate installation of the provided hotfix, as no alternative solutions currently exist.

Organizations should upgrade their SMA1000 appliances to platform-hotfix version 12.4.3-0345 or later for the 12.4.3 branch, and version 12.5.0-0283 or later for the 12.5.0 branch. The necessary updates are available through the MySonicWall customer portal.

Administrators are advised to examine appliance logs and configurations for signs of compromise, such as unusual requests to /api/login or /api/logout, and other suspicious activities as outlined by SonicWall.

Future Outlook

Upon detecting any signs of compromise, SonicWall recommends re-imaging the affected hardware or redeploying virtual appliances. Additionally, all user and administrator passwords should be reset, including time-based one-time password tokens, to protect against potential credential theft.

SonicWall has acknowledged the contributions of PSIRT researcher Adam Babis, along with Sean Koessel and Steven Adair of Volexity, for identifying additional indicators of compromise and assisting in the investigation.

Cyber Security News Tags:0-day vulnerabilities, code injection, CVE-2026-15409, CVE-2026-15410, cyber attacks, Cybersecurity, firewall vulnerabilities, Hotfix, network security, PSIRT, security advisory, SMA1000, SonicWall, SSRF vulnerability, system compromise

Post navigation

Previous Post: Zero-Day Vulnerability Causes ShareFile Service Interruption

Related Posts

New Banking Malware DoubleTrouble Attacking Users Via Phishing Sites To Steal Banking Credentials New Banking Malware DoubleTrouble Attacking Users Via Phishing Sites To Steal Banking Credentials Cyber Security News
Smart Electric Vehicles Face Hidden Cyber Vulnerabilities Exposing Drivers to Risks Smart Electric Vehicles Face Hidden Cyber Vulnerabilities Exposing Drivers to Risks Cyber Security News
Hackers Weaponizing Telegram Messenger with Dangerous Android Malware to Gain Full System Control Hackers Weaponizing Telegram Messenger with Dangerous Android Malware to Gain Full System Control Cyber Security News
Addressing SOC False Negatives with Interactive Analysis Addressing SOC False Negatives with Interactive Analysis Cyber Security News
AWS and Anthropic Enhance AI Cybersecurity with Claude Mythos AWS and Anthropic Enhance AI Cybersecurity with Claude Mythos Cyber Security News
Critical ASP.NET Vulnerability Allows Attacker To Bypass Security Feature Remotely Critical ASP.NET Vulnerability Allows Attacker To Bypass Security Feature Remotely Cyber Security News

Categories

  • Cyber Security News
  • How To?
  • Security Week News
  • The Hacker News

Recent Posts

  • SonicWall Urges Immediate Fixes for Critical Firewall Flaws
  • Zero-Day Vulnerability Causes ShareFile Service Interruption
  • AsyncAPI npm Packages Compromise Sparks Botnet Concerns
  • EU Age Verification App Bypassed Using Chrome Extension
  • Chrome 150 and Firefox 152 Updates Fix Critical Bugs

Pages

  • About Us – Contact
  • Disclaimer
  • Privacy Policy
  • Terms and Rules

Archives

  • July 2026
  • June 2026
  • May 2026
  • April 2026
  • March 2026
  • February 2026
  • January 2026
  • December 2025
  • November 2025
  • October 2025
  • September 2025
  • August 2025
  • July 2025
  • June 2025
  • May 2025

Recent Posts

  • SonicWall Urges Immediate Fixes for Critical Firewall Flaws
  • Zero-Day Vulnerability Causes ShareFile Service Interruption
  • AsyncAPI npm Packages Compromise Sparks Botnet Concerns
  • EU Age Verification App Bypassed Using Chrome Extension
  • Chrome 150 and Firefox 152 Updates Fix Critical Bugs

Pages

  • About Us – Contact
  • Disclaimer
  • Privacy Policy
  • Terms and Rules

Categories

  • Cyber Security News
  • How To?
  • Security Week News
  • The Hacker News

Copyright © 2026 Cyber Web Spider Blog – News.

Powered by PressBook Masonry Dark