wid-sec-w-2026-0944 · Published 2026-03-31 · View on BSI CERT-Bund ↗

SonicWall Email Security Appliance: Multiple Vulnerabilities

CVSS 4.8 MEDIUM

Risk Summary

A denial-of-service (DoS) vulnerability exists due to improper input validation in the SonicWall Email Security appliance, allowing a remote authenticated attacker as admin user to cause the application to become unresponsive.

CVEs (3)

CVE-2026-3468 CVE-2026-3469 CVE-2026-3470

Affected Vendors

SonicWall

Affected Products (12)

SonicWall · Email Security Appliance 5000 <10.0.35.8405

SonicWall · Email Security Appliance 5000 10.0.35.8405

SonicWall · Email Security Appliance 5050 <10.0.35.8405

SonicWall · Email Security Appliance 5050 10.0.35.8405

SonicWall · Email Security Appliance 7000 <10.0.35.8405

SonicWall · Email Security Appliance 7000 10.0.35.8405

SonicWall · Email Security Appliance 7050 <10.0.35.8405

SonicWall · Email Security Appliance 7050 10.0.35.8405

SonicWall · Email Security Appliance 9000 <10.0.35.8405

SonicWall · Email Security Appliance 9000 10.0.35.8405

SonicWall · Email Security Appliance Hyper-V <10.0.35.8405

SonicWall · Email Security Appliance Hyper-V 10.0.35.8405

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more