CVE-2026-0205
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
29/04/2026
Last modified:
05/05/2026
Description
A post-authentication Path Traversal vulnerability in SonicOS allows an attacker to interact with usually restricted services.
Impact
Base Score 3.x
6.80
Severity 3.x
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:sonicwall:sonicos:*:*:*:*:*:*:*:* | 6.5.5.2-28n (excluding) | |
| cpe:2.3:h:sonicwall:nsa_2650:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:sonicwall:nsa_3600:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:sonicwall:nsa_3650:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:sonicwall:nsa_4600:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:sonicwall:nsa_4650:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:sonicwall:nsa_5600:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:sonicwall:nsa_5650:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:sonicwall:nsa_6600:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:sonicwall:nsa_6650:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:sonicwall:sm_9200:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:sonicwall:sm_9250:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:sonicwall:sm_9400:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:sonicwall:sm_9450:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:sonicwall:sm_9600:-:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page