๐ฅ This vulnerability is being actively exploited in the wild (CISA Known Exploited Vulnerabilities catalog)
๐ฅ This vulnerability is being actively exploited in the wild (CISA Known Exploited Vulnerabilities catalog)
SonicWall SMA1000 Appliances contain a code injection vulnerability (a flaw that lets attackers insert malicious code) that could allow an authenticated attacker with administrator access to run arbitrary commands on the affected system. This vulnerability is currently being actively exploited by attackers in the wild, making it a serious security concern.
Apply mitigations in accordance with vendor instructions from SonicWall's security advisory (https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0008), ensuring compliance with CISA's BOD 26-04 guidance on prioritizing security updates. If mitigations are unavailable for cloud services, discontinue use of the product. The due date for patching is 2026-07-17.
EPSS: 0.0%
Yes
๐ฅ Actively Exploited
July 13, 2026
Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-15410
First tracked: July 14, 2026 at 08:00 PM
Classified by LLM (prompt v3) ยท confidence: 95%