CVE-2026-3439
Essential information
- Published
- 04/03/2026 10:16
- Modified
- 05/03/2026 18:03
- Author
- —
- Creator
- —
- CVSS
- 4.9 MEDIUM (v3.1)
- CISA KEV
- No
- CWE
- —
- CVSS vector
-
—
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H—
CVSS metrics
- Access vector
- —
- Access complexity
- —
- Authentication
- —
- Confidentiality impact
- —
- Integrity impact
- —
- Availability impact
- —
- Exploitability
- —
- Remediation level
- —
- Report confidence
- —
- Temporal score
- —
- Attack vector
- NETWORK
- Attack complexity
- LOW
- Privileges required
- HIGH
- User interaction
- NONE
- Scope
- UNCHANGED
- Confidentiality impact
- NONE
- Integrity impact
- NONE
- Availability impact
- HIGH
- Exploit code maturity
- —
- Remediation level
- —
- Report confidence
- —
- Temporal score
- —
- Attack vector
- —
- Attack complexity
- —
- Attack requirements
- —
- Privileges required
- —
- User interaction
- —
- Confidentiality (V)
- —
- Confidentiality (S)
- —
- Integrity (V)
- —
- Integrity (S)
- —
- Availability (V)
- —
- Availability (S)
- —
- Exploit maturity
- —
Description
A post-authentication Stack-based Buffer Overflow vulnerability in SonicOS certificate handling allows a remote attacker to crash a firewall.
NVD status
- Status
- Analyzed — CVE has been recently published to the CVE List and has been received by the NVD.
- Source
- [email protected]
- NVD
- View on NVD
Affected products (CPE)
| Product | CPE |
|---|---|
| sonicwall / sonicos | cpe:2.3:o:sonicwall:sonicos:*:*:*:*:*:*:*:* |
| sonicwall / nsa 2700 | cpe:2.3:h:sonicwall:nsa_2700:-:*:*:*:*:*:*:* |
| sonicwall / nsa 3700 | cpe:2.3:h:sonicwall:nsa_3700:-:*:*:*:*:*:*:* |
| sonicwall / nsa 4700 | cpe:2.3:h:sonicwall:nsa_4700:-:*:*:*:*:*:*:* |
| sonicwall / nsa 5700 | cpe:2.3:h:sonicwall:nsa_5700:-:*:*:*:*:*:*:* |
| sonicwall / nsa 6700 | cpe:2.3:h:sonicwall:nsa_6700:-:*:*:*:*:*:*:* |
| sonicwall / nssp 10700 | cpe:2.3:h:sonicwall:nssp_10700:-:*:*:*:*:*:*:* |
| sonicwall / nssp 11700 | cpe:2.3:h:sonicwall:nssp_11700:-:*:*:*:*:*:*:* |
| sonicwall / nssp 13700 | cpe:2.3:h:sonicwall:nssp_13700:-:*:*:*:*:*:*:* |
| sonicwall / nssp 15700 | cpe:2.3:h:sonicwall:nssp_15700:-:*:*:*:*:*:*:* |
| sonicwall / nsv270 | cpe:2.3:h:sonicwall:nsv270:-:*:*:*:*:*:*:* |
| sonicwall / nsv470 | cpe:2.3:h:sonicwall:nsv470:-:*:*:*:*:*:*:* |
| sonicwall / nsv870 | cpe:2.3:h:sonicwall:nsv870:-:*:*:*:*:*:*:* |
| sonicwall / tz270 | cpe:2.3:h:sonicwall:tz270:-:*:*:*:*:*:*:* |
| sonicwall / tz270w | cpe:2.3:h:sonicwall:tz270w:-:*:*:*:*:*:*:* |
| sonicwall / tz370 | cpe:2.3:h:sonicwall:tz370:-:*:*:*:*:*:*:* |
| sonicwall / tz370w | cpe:2.3:h:sonicwall:tz370w:-:*:*:*:*:*:*:* |
| sonicwall / tz470 | cpe:2.3:h:sonicwall:tz470:-:*:*:*:*:*:*:* |
| sonicwall / tz470w | cpe:2.3:h:sonicwall:tz470w:-:*:*:*:*:*:*:* |
| sonicwall / tz570 | cpe:2.3:h:sonicwall:tz570:-:*:*:*:*:*:*:* |
| sonicwall / tz570p | cpe:2.3:h:sonicwall:tz570p:-:*:*:*:*:*:*:* |
| sonicwall / tz570w | cpe:2.3:h:sonicwall:tz570w:-:*:*:*:*:*:*:* |
| sonicwall / tz670 | cpe:2.3:h:sonicwall:tz670:-:*:*:*:*:*:*:* |
| sonicwall / sonicos | cpe:2.3:o:sonicwall:sonicos:*:*:*:*:*:*:*:* |
| sonicwall / nsa 2800 | cpe:2.3:h:sonicwall:nsa_2800:-:*:*:*:*:*:*:* |
| sonicwall / nsa 3800 | cpe:2.3:h:sonicwall:nsa_3800:-:*:*:*:*:*:*:* |
| sonicwall / nsa 4800 | cpe:2.3:h:sonicwall:nsa_4800:-:*:*:*:*:*:*:* |
| sonicwall / nsa 5800 | cpe:2.3:h:sonicwall:nsa_5800:-:*:*:*:*:*:*:* |
| sonicwall / tz280 | cpe:2.3:h:sonicwall:tz280:-:*:*:*:*:*:*:* |
| sonicwall / tz380 | cpe:2.3:h:sonicwall:tz380:-:*:*:*:*:*:*:* |
| sonicwall / tz480 | cpe:2.3:h:sonicwall:tz480:-:*:*:*:*:*:*:* |
| sonicwall / tz580 | cpe:2.3:h:sonicwall:tz580:-:*:*:*:*:*:*:* |
| sonicwall / tz680 | cpe:2.3:h:sonicwall:tz680:-:*:*:*:*:*:*:* |
| sonicwall / tz80 | cpe:2.3:h:sonicwall:tz80:-:*:*:*:*:*:*:* |