CVE-2026-4113 PUBLISHED

Assigner: sonicwall
Reserved: 13.03.2026 Published: 09.04.2026 Updated: 09.04.2026

An observable response discrepancy vulnerability in the SonicWall SMA1000 series appliances allows a remote attacker to enumerate SSL VPN user credentials.

Product Status

Vendor SonicWall
Product SMA1000
Versions Default: unknown
  • Version 12.4.3-03245 (platform-hotfix) and earlier versions. is affected
  • Version 12.5.0-02283 (platform-hotfix) and earlier versions. is affected

References

Problem Types

  • CWE-204 Observable response discrepancy CWE