Description
Improper neutralization of special elements used in an SQL command (“SQL Injection”) in SonicWall SMA1000 series appliances allows a remote authenticated attacker with read-only administrator privileges to escalate privileges to primary administrator.
Published: 2026-04-09
Score: 7.2 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

An SQL injection flaw exists in the SonicWall SMA1000 series appliances due to improper neutralization of special characters in SQL commands. An attacker who has authenticated with read‑only administrator privileges can exploit this vulnerability to elevate their rights, ultimately gaining primary administrator access. This allows full control over the appliance, including configuration changes, data exfiltration, and further network compromise.

Affected Systems

The affected devices are SonicWall SMA1000 series network security appliances. No specific firmware or software version is listed in the advisory, so all current SMA1000 units should be considered vulnerable until a vendor patch is available.

Risk and Exploitability

The vulnerability is remote and requires only authenticated access with read‑only rights, a privilege level that is usually granted for monitoring purposes. Because the flaw permits privilege escalation to primary administrator, the potential impact is high, giving an attacker full administrative control. The CVSS score of 7.2 indicates a medium severity, and the EPSS score of <1% suggests a low likelihood of exploitation. The vulnerability is not listed in the KEV catalog.

Generated by OpenCVE AI on May 10, 2026 at 15:52 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest firmware or security patch released by SonicWall
  • Restrict read‑only administrator accounts to trusted personnel only
  • Segregate SMA1000 appliances from critical management networks and monitor for anomalous activity
  • If a patch is not yet available, enforce least‑privilege access controls and regularly audit configuration changes

Generated by OpenCVE AI on May 10, 2026 at 15:52 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 14 May 2026 19:45:00 +0000

Type Values Removed Values Added
First Time appeared Sonicwall sma6200
Sonicwall sma6200 Firmware
Sonicwall sma6210
Sonicwall sma6210 Firmware
Sonicwall sma7200
Sonicwall sma7200 Firmware
Sonicwall sma7210
Sonicwall sma7210 Firmware
Sonicwall sma8200v
CPEs cpe:2.3:a:sonicwall:sma8200v:*:*:*:*:*:*:*:*
cpe:2.3:h:sonicwall:sma6200:-:*:*:*:*:*:*:*
cpe:2.3:h:sonicwall:sma6210:-:*:*:*:*:*:*:*
cpe:2.3:h:sonicwall:sma7200:-:*:*:*:*:*:*:*
cpe:2.3:h:sonicwall:sma7210:-:*:*:*:*:*:*:*
cpe:2.3:o:sonicwall:sma6200_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:sonicwall:sma6210_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:sonicwall:sma7200_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:sonicwall:sma7210_firmware:*:*:*:*:*:*:*:*
Vendors & Products Sonicwall sma6200
Sonicwall sma6200 Firmware
Sonicwall sma6210
Sonicwall sma6210 Firmware
Sonicwall sma7200
Sonicwall sma7200 Firmware
Sonicwall sma7210
Sonicwall sma7210 Firmware
Sonicwall sma8200v

Sun, 10 May 2026 16:15:00 +0000

Type Values Removed Values Added
Title SQL Injection Enables Privilege Escalation in SonicWall SMA1000 Appliances

Sun, 10 May 2026 14:15:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 7.2, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H'}

Mon, 13 Apr 2026 13:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Fri, 10 Apr 2026 10:00:00 +0000

Type Values Removed Values Added
Title SQL Injection Enables Privilege Escalation in SonicWall SMA1000 Appliances

Fri, 10 Apr 2026 09:00:00 +0000

Type Values Removed Values Added
First Time appeared Sonicwall
Sonicwall sma1000
Vendors & Products Sonicwall
Sonicwall sma1000

Thu, 09 Apr 2026 15:00:00 +0000

Type Values Removed Values Added
Description Improper neutralization of special elements used in an SQL command (“SQL Injection”) in SonicWall SMA1000 series appliances allows a remote authenticated attacker with read-only administrator privileges to escalate privileges to primary administrator.
Weaknesses CWE-89
References

Subscriptions

Sonicwall Sma1000 Sma6200 Sma6200 Firmware Sma6210 Sma6210 Firmware Sma7200 Sma7200 Firmware Sma7210 Sma7210 Firmware Sma8200v
cve-icon MITRE

Status: PUBLISHED

Assigner: sonicwall

Published:

Updated: 2026-05-10T13:18:49.315Z

Reserved: 2026-03-13T11:57:18.440Z

Link: CVE-2026-4112

cve-icon Vulnrichment

Updated: 2026-04-13T13:00:28.068Z

cve-icon NVD

Status : Analyzed

Published: 2026-04-09T15:16:13.517

Modified: 2026-05-14T19:43:40.423

Link: CVE-2026-4112

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-10T16:00:13Z

Weaknesses