Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
4.9
SonicOS Firewall Crashes Remotely After Authentication
CVE-2026-0401
Summary
A flaw in SonicOS can allow an attacker to intentionally crash a firewall after they have logged in. This could disrupt network access and require a system reboot. Users should update their SonicOS software to the latest version to prevent this issue.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| sonicwall | sonicos | <= 7.3.2-7010 | – |
| sonicwall | sonicos | <= 8.2.0-8009 | – |
Original title
A post-authentication NULL Pointer Dereference vulnerability in SonicOS allows a remote attacker to crash a firewall.
Original description
A post-authentication NULL Pointer Dereference vulnerability in SonicOS allows a remote attacker to crash a firewall.
nvd CVSS3.1
4.9
Vulnerability type
CWE-476
NULL Pointer Dereference
- https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0001 Vendor Advisory
Published: 24 Feb 2026 · Updated: 12 Mar 2026 · First seen: 6 Mar 2026