CVE-2026-15410

Published Jul 14, 2026

Last updated 2 hours ago

Overview

AI description

Automated description summarized from trusted sources.

CVE-2026-15410 is identified as a code injection flaw affecting the SonicWall SMA1000 Appliance Management Console. This vulnerability could enable remote attackers, once authenticated as an administrator, to execute arbitrary operating system commands and achieve remote code execution on the affected appliance. This issue impacts SonicWall's SMA6210, SMA7210, and SMA8200v appliances, specifically certain firmware versions including 12.4.3-03245, 12.4.3-03387, 12.4.3-03434, 12.5.0-02283, 12.5.0-02624, and 12.5.0-02800. Reports indicate that this vulnerability has been actively exploited in conjunction with another flaw, CVE-2026-15409.

Description
Post-authentication improper control of generation of code ('Code Injection') vulnerability has been identified in the SMA1000 Appliance Management Console (AMC) which in specific conditions could potentially enable a remote authenticated attacker as administrator to execute arbitrary OS commands.
Source
PSIRT@sonicwall.com
NVD status
Received

Weaknesses

PSIRT@sonicwall.com
CWE-94

Social media

Hype score
Not currently trending
  1. SonicWall warns that two SMA1000 vulnerabilities (CVE-2026-15409 and CVE-2026-15410) are being used in zero-day attacks. Act now: install the latest security updates to protect your network. https://t.co/xLk14CE0GN

    @trubetech

    14 Jul 2026

    12 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. SonicWall SMA appliances targeted in zero-day attacks (CVE-2026-15409, CVE-2026-15410) https://t.co/feLgfWplNj

    @TheCyberSecHub

    14 Jul 2026

    782 Impressions

    1 Retweet

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. SonicWall SMA appliances targeted in zero-day attacks (CVE-2026-15409, CVE-2026-15410) https://t.co/xQpU3GYHd0

    @lgomezperu

    14 Jul 2026

    38 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. #SonicWall SMA appliances targeted in zero-day attacks (#CVE-2026-15409, CVE-2026-15410) https://t.co/n7FywzAmvH https://t.co/aylTCjJWDu

    @evanderburg

    14 Jul 2026

    61 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  5. SonicWall SMA appliances targeted in zero-day attacks (CVE-2026-15409, CVE-2026-15410): SonicWall has fixed two actively exploited vulnerabilities (CVE-2026-15409, CVE-2026-15410) affecting its Secure Mobile Access (SMA) 1000 Series appliances, and is… https://t.co/duxrViYJjx h

    @shah_sheikh

    14 Jul 2026

    37 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  6. SonicWall SMA appliances targeted in zero-day attacks (CVE-2026-15409, CVE-2026-15410) - https://t.co/D2wjIDzVuq - @SonicWall #CVE #CyberSecurity #CyberSecurityNews

    @helpnetsecurity

    14 Jul 2026

    402 Impressions

    1 Retweet

    2 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References

Sources include official advisories and independent security research.