CVE-2026-3470

EPSS 0.17%
Veröffentlicht 31.03.2026 20:19:38
Zuletzt bearbeitet 13.04.2026 15:26:04
Quelle PSIRT@sonicwall.com
CVE-Watchlists
Login
Unerledigt
Login

A vulnerability exists in the SonicWall Email Security appliance due to improper input sanitization that may lead to data corruption, allowing a remote authenticated attacker as admin user could exploit this issue by providing crafted input that corrupts application database.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

NVD 1 VulnDex Vulnerability Enrichment 2

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Sonicwall ≫ Email Security Version < 10.0.35.8405

   Sonicwall ≫ Esa5000 Version-
   Sonicwall ≫ Esa5050 Version-
   Sonicwall ≫ Esa7000 Version-
   Sonicwall ≫ Esa7050 Version-
   Sonicwall ≫ Esa9000 Version-

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.17%	0.373

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0	3.8	1.2	2.5	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0002

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2026-3470

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-3470

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-3470

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-3470