CVE-2026-3439 Sonicwall — Exploit & Vulnerability Details MEDIUM

Parameter	Value
CVSS	4.9 (MEDIUM)
Affected Versions	before 8.2.0-8009
Fixed In	7.3.2-7010
Type	CWE-121 (Stack-based Buffer Overflow)
Vendor	Sonicwall
Public PoC	No

A post-authentication Stack-based Buffer Overflow vulnerability in SonicOS certificate handling allows a remote attacker to crash a firewall.

Attack Parameters

Attack Vector

Network

Can be exploited remotely

Attack Complexity

Low

Easy to exploit

Privileges Required

High

Admin privileges needed

User Interaction

None

No user interaction needed

Impact Assessment

Confidentiality

None

No data leak

Integrity

None

No data modification

Availability

High

Complete denial of service

CVSS Vector v3.1

Weakness Type (CWE)

CWE-121 Stack-based Buffer Overflow

Vulnerable Products 34

Configuration	From (including)	Up to (excluding)
Sonicwall Sonicos cpe:2.3:o:sonicwall:sonicos::::::::	—	`7.3.2-7010`
Sonicwall Nsa_2700 cpe:2.3:h:sonicwall:nsa_2700:-:::::::*	—	—
Sonicwall Nsa_3700 cpe:2.3:h:sonicwall:nsa_3700:-:::::::*	—	—
Sonicwall Nsa_4700 cpe:2.3:h:sonicwall:nsa_4700:-:::::::*	—	—
Sonicwall Nsa_5700 cpe:2.3:h:sonicwall:nsa_5700:-:::::::*	—	—
Sonicwall Nsa_6700 cpe:2.3:h:sonicwall:nsa_6700:-:::::::*	—	—
Sonicwall Nssp_10700 cpe:2.3:h:sonicwall:nssp_10700:-:::::::*	—	—
Sonicwall Nssp_11700 cpe:2.3:h:sonicwall:nssp_11700:-:::::::*	—	—
Sonicwall Nssp_13700 cpe:2.3:h:sonicwall:nssp_13700:-:::::::*	—	—
Sonicwall Nssp_15700 cpe:2.3:h:sonicwall:nssp_15700:-:::::::*	—	—
Sonicwall Nsv270 cpe:2.3:h:sonicwall:nsv270:-:::::::*	—	—
Sonicwall Nsv470 cpe:2.3:h:sonicwall:nsv470:-:::::::*	—	—
Sonicwall Nsv870 cpe:2.3:h:sonicwall:nsv870:-:::::::*	—	—
Sonicwall Tz270 cpe:2.3:h:sonicwall:tz270:-:::::::*	—	—
Sonicwall Tz270w cpe:2.3:h:sonicwall:tz270w:-:::::::*	—	—
Sonicwall Tz370 cpe:2.3:h:sonicwall:tz370:-:::::::*	—	—
Sonicwall Tz370w cpe:2.3:h:sonicwall:tz370w:-:::::::*	—	—
Sonicwall Tz470 cpe:2.3:h:sonicwall:tz470:-:::::::*	—	—
Sonicwall Tz470w cpe:2.3:h:sonicwall:tz470w:-:::::::*	—	—
Sonicwall Tz570 cpe:2.3:h:sonicwall:tz570:-:::::::*	—	—
Sonicwall Tz570p cpe:2.3:h:sonicwall:tz570p:-:::::::*	—	—
Sonicwall Tz570w cpe:2.3:h:sonicwall:tz570w:-:::::::*	—	—
Sonicwall Tz670 cpe:2.3:h:sonicwall:tz670:-:::::::*	—	—
Sonicwall Sonicos cpe:2.3:o:sonicwall:sonicos::::::::	—	`8.2.0-8009`
Sonicwall Nsa_2800 cpe:2.3:h:sonicwall:nsa_2800:-:::::::*	—	—
Sonicwall Nsa_3800 cpe:2.3:h:sonicwall:nsa_3800:-:::::::*	—	—
Sonicwall Nsa_4800 cpe:2.3:h:sonicwall:nsa_4800:-:::::::*	—	—
Sonicwall Nsa_5800 cpe:2.3:h:sonicwall:nsa_5800:-:::::::*	—	—
Sonicwall Tz280 cpe:2.3:h:sonicwall:tz280:-:::::::*	—	—
Sonicwall Tz380 cpe:2.3:h:sonicwall:tz380:-:::::::*	—	—
Sonicwall Tz480 cpe:2.3:h:sonicwall:tz480:-:::::::*	—	—
Sonicwall Tz580 cpe:2.3:h:sonicwall:tz580:-:::::::*	—	—
Sonicwall Tz680 cpe:2.3:h:sonicwall:tz680:-:::::::*	—	—
Sonicwall Tz80 cpe:2.3:h:sonicwall:tz80:-:::::::*	—	—

References 1

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0001

PSIRT@sonicwall.com

Share Post Share Share Share

Related Vulnerabilities

CVE-2025-40604

Sonicwall

9.8

CVE-2025-40601

Sonicwall

7.5

CVE-2025-40603

Sonicwall

4.5

CVE-2025-23006

Sonicwall

9.8

CVE-2024-53704

Sonicwall

9.8

Menu

CVE-2026-3439

Attack Parameters

Impact Assessment

CVSS Vector v3.1

Weakness Type (CWE)

Vulnerable Products 34

References 1

Related Vulnerabilities

CVE-2025-40604

CVE-2025-40601

CVE-2025-40603

CVE-2025-23006

CVE-2024-53704

CVE Details

Editor's Choice

Menu

CVE-2026-3439

Attack Parameters

Impact Assessment

CVSS Vector v3.1

Weakness Type (CWE)

Vulnerable Products 34

References 1

Related Vulnerabilities

CVE-2025-40604

CVE-2025-40601

CVE-2025-40603

CVE-2025-23006

CVE-2024-53704

CVE Details

Editor's Choice

Stay informed on cybersecurity