CVE-2026-15410
Published Jul 14, 2026
Last updated 2 hours ago
AI description
CVE-2026-15410 is identified as a code injection flaw affecting the SonicWall SMA1000 Appliance Management Console. This vulnerability could enable remote attackers, once authenticated as an administrator, to execute arbitrary operating system commands and achieve remote code execution on the affected appliance. This issue impacts SonicWall's SMA6210, SMA7210, and SMA8200v appliances, specifically certain firmware versions including 12.4.3-03245, 12.4.3-03387, 12.4.3-03434, 12.5.0-02283, 12.5.0-02624, and 12.5.0-02800. Reports indicate that this vulnerability has been actively exploited in conjunction with another flaw, CVE-2026-15409.
- Description
- Post-authentication improper control of generation of code ('Code Injection') vulnerability has been identified in the SMA1000 Appliance Management Console (AMC) which in specific conditions could potentially enable a remote authenticated attacker as administrator to execute arbitrary OS commands.
- Source
- PSIRT@sonicwall.com
- NVD status
- Received
- PSIRT@sonicwall.com
- CWE-94
- Hype score
- Not currently trending
SonicWall warns that two SMA1000 vulnerabilities (CVE-2026-15409 and CVE-2026-15410) are being used in zero-day attacks. Act now: install the latest security updates to protect your network. https://t.co/xLk14CE0GN
@trubetech
14 Jul 2026
12 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
SonicWall SMA appliances targeted in zero-day attacks (CVE-2026-15409, CVE-2026-15410) https://t.co/feLgfWplNj
@TheCyberSecHub
14 Jul 2026
782 Impressions
1 Retweet
0 Likes
0 Bookmarks
0 Replies
0 Quotes
SonicWall SMA appliances targeted in zero-day attacks (CVE-2026-15409, CVE-2026-15410) https://t.co/xQpU3GYHd0
@lgomezperu
14 Jul 2026
38 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
#SonicWall SMA appliances targeted in zero-day attacks (#CVE-2026-15409, CVE-2026-15410) https://t.co/n7FywzAmvH https://t.co/aylTCjJWDu
@evanderburg
14 Jul 2026
61 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
SonicWall SMA appliances targeted in zero-day attacks (CVE-2026-15409, CVE-2026-15410): SonicWall has fixed two actively exploited vulnerabilities (CVE-2026-15409, CVE-2026-15410) affecting its Secure Mobile Access (SMA) 1000 Series appliances, and is… https://t.co/duxrViYJjx h
@shah_sheikh
14 Jul 2026
37 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
SonicWall SMA appliances targeted in zero-day attacks (CVE-2026-15409, CVE-2026-15410) - https://t.co/D2wjIDzVuq - @SonicWall #CVE #CyberSecurity #CyberSecurityNews
@helpnetsecurity
14 Jul 2026
402 Impressions
1 Retweet
2 Likes
0 Bookmarks
0 Replies
0 Quotes