Security Advisory

CVE-2026-4112

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-04-09 14:22:21

Last updated 2026-05-10 13:18:49

Assigner sonicwall

State PUBLISHED

Description

Improper neutralization of special elements used in an SQL command (“SQL Injection”) in SonicWall SMA1000 series appliances allows a remote authenticated attacker with read-only administrator privileges to escalate privileges to primary administrator.

← Browse all CVEs View on cve.org ↗