VYPR
High severity7.2NVD Advisory· Published Apr 9, 2026· Updated May 14, 2026

CVE-2026-4112

CVE-2026-4112

Description

Improper neutralization of special elements used in an SQL command (“SQL Injection”) in SonicWall SMA1000 series appliances allows a remote authenticated attacker with read-only administrator privileges to escalate privileges to primary administrator.

Affected products

6

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.