Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
4.9
SonicOS Firewall Can Crash After Receiving Malicious Certificate
CVE-2026-3439
Summary
A flaw in SonicOS certificate handling makes it possible for a remote attacker to crash the firewall. This could cause downtime and disrupt network connectivity. Update the SonicOS software to the latest version to fix the issue.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| sonicwall | sonicos | <= 7.3.2-7010 | – |
| sonicwall | sonicos | <= 8.2.0-8009 | – |
Original title
A post-authentication Stack-based Buffer Overflow vulnerability in SonicOS certificate handling allows a remote attacker to crash a firewall.
Original description
A post-authentication Stack-based Buffer Overflow vulnerability in SonicOS certificate handling allows a remote attacker to crash a firewall.
nvd CVSS3.1
4.9
Vulnerability type
CWE-121
Stack-based Buffer Overflow
- https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0001 Vendor Advisory
Published: 4 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026