Code Injection in SonicWall SMA 1000 - CVE-2026-15410
Published: July 15, 2026
SonicWall SMA 1000
Detailed vulnerability description
The vulnerability allows a remote user to execute arbitrary OS commands.
The vulnerability exists due to improper control of generation of code in the SMA1000 Appliance Management Console (AMC) when processing crafted input under specific conditions. A remote privileged user can submit crafted input to execute arbitrary OS commands.
The issue is post-authentication and requires administrator access. Active exploitation has been observed in the wild.