PT-2026-58291 · Sonicwall · Sma1000
Adam Babis
·
Published
2026-07-14
·
Updated
2026-07-16
·
CVE-2026-15409
CVSS v3.1
10
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
SonicWall SMA1000 (affected versions not specified)
Description
A Server-side request forgery (SSRF) issue exists in the Work Place interface. This allows a remote unauthenticated attacker to force the appliance to make requests to unintended internal or external destinations. This issue is actively exploited in the wild.
Recommendations
Apply security updates immediately.
Restrict exposure of the Work Place interface.
Review affected appliances for signs of compromise.
Fix
SSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Sma1000