CVE-2026-3468

Name of the Vulnerable Software and Affected Versions SonicWall Email Security (affected versions not specified)

Description A stored Cross-Site Scripting (XSS) issue exists in the SonicWall Email Security appliance. This is due to insufficient sanitization of user-provided data when creating web pages. A remote attacker with administrative privileges can potentially execute arbitrary JavaScript code. The attacker must be authenticated as an admin user to exploit this issue.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.