CVE-2026-3470

Summary

A vulnerability exists in the SonicWall Email Security appliance due to improper input sanitization that may lead to data corruption, allowing a remote authenticated attacker as admin user could exploit this issue by providing crafted input that corrupts application database.

Affected Software

VendorProductVersion RangeStatus
SonicWallEmail Security10.0.34.8215 and earlier versionsaffected
SonicWallEmail Security10.0.34.8223 and earlier versionsaffected

Weaknesses

  • CWE-20: CWE-20 Improper input validation

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References