CVE-2026-0399 PUBLISHED

Assigner: sonicwall
Reserved: 02.12.2025 Published: 24.02.2026 Updated: 24.02.2026

Multiple post-authentication stack-based buffer overflow vulnerabilities in the SonicOS management interface due to improper bounds checking in a API endpoint.

Product Status

Vendor	SonicWall
Product	SonicOS
Versions	Default: unknown Version 7.0.1-5169 and older versions is affected Version 7.3.1-7013 and older versions is affected Version 8.1.0-8017 and older versions is affected

Credits

Vang3lis, Heuzoo and Moyushui of VARAS@IIE finder

References

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0001

Problem Types

CWE-121 Stack-based Buffer Overflow CWE