CVE-2026-0400

MEDIUM EPSS 34.0%
Published Feb 24, 20264mo ago ยท Modified Feb 26, 20264mo ago
4.9 CVSS 3.1
Medium
Find Similar
Published Feb 24, 2026 4mo ago
Last Modified Feb 26, 2026 4mo ago

Description

A post-authentication Format String vulnerability in SonicOS allows a remote attacker to crash a firewall.

CVSS Details

Base Score
4.9
Exploitability
1.2
Impact
3.6
Vector string
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
Attack Vector Network
Attack Complexity Low
Privileges Required High
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
34.0% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-134

Affected Products 34

VendorProductVersionRange
sonicwallsonicos* <7.3.2-7010
sonicwallnsa_2700*any
sonicwallnsa_3700*any
sonicwallnsa_4700*any
sonicwallnsa_5700*any
sonicwallnsa_6700*any
sonicwallnssp_10700*any
sonicwallnssp_11700*any
sonicwallnssp_13700*any
sonicwallnssp_15700*any
sonicwallnsv270*any
sonicwallnsv470*any
sonicwallnsv870*any
sonicwalltz270*any
sonicwalltz270w*any
sonicwalltz370*any
sonicwalltz370w*any
sonicwalltz470*any
sonicwalltz470w*any
sonicwalltz570*any
sonicwalltz570p*any
sonicwalltz570w*any
sonicwalltz670*any
sonicwallsonicos* <8.2.0-8009
sonicwallnsa_2800*any
sonicwallnsa_3800*any
sonicwallnsa_4800*any
sonicwallnsa_5800*any
sonicwalltz280*any
sonicwalltz380*any
sonicwalltz480*any
sonicwalltz580*any
sonicwalltz680*any
sonicwalltz80*any

References 1

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.