ShellCodeX
Tools • Events • News • Insights
ShellCodeX Intelligence Brief
CRITICAL Vulnerabilities

SonicWall SMA 1000 zero-days abused; SSRF bug could enable command execution

Source headline: Two SonicWall SMA 1000 Zero-Days Exploited, One Could Enable Admin Commands

Threat level Critical
Signal strength 85/100
Source confidence 1 source
Published 2 hours ago

Intelligence Summary

SonicWall disclosed that two zero-day vulnerabilities in Secure Mobile Access (SMA) 1000 series appliances are being actively exploited. One flaw is a server-side request forgery (SSRF) issue that could be leveraged to achieve arbitrary command execution. The other vulnerability also affects the SMA 1000 platform and is linked to the ongoing exploitation. The affected products expose risk to unauthenticated remote attackers, depending on reachability and configuration. Organizations using SMA 1000 appliances should check SonicWall guidance and apply any available mitigations or patches immediately.

Recommended Action

Prioritize immediate review, validate exposure, and patch or mitigate affected systems.

Topics

#zero-day #active-exploitation #ssrf #sonicwall #cve-2026-15409 #sma-1000
Original reporting The Hacker News Two SonicWall SMA 1000 Zero-Days Exploited, One Could Enable Admin Commands
Open original source