CVE-2026-3470 PUBLISHED

Assigner: sonicwall
Reserved: 03.03.2026 Published: 31.03.2026 Updated: 31.03.2026

A vulnerability exists in the SonicWall Email Security appliance due to improper input sanitization that may lead to data corruption, allowing a remote authenticated attacker as admin user could exploit this issue by providing crafted input that corrupts application database.

Product Status

Vendor	SonicWall
Product	Email Security
Versions	Default: unknown Version 10.0.34.8215 and earlier versions is affected Version 10.0.34.8223 and earlier versions is affected

Credits

Brian Mariani of DigitalCanion SA - www.digitalcanion.com finder

References

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0002

Problem Types

CWE-20 Improper input validation CWE