Vulnerabilities SonicWall Urges Immediate Patching of Firewall Vulnerabilities The bugs could be exploited to bypass security controls, access restricted services, and crash firewalls. By Ionut Arghire | April 30, 2026 (10:52 AM ET) Flipboard Reddit Whatsapp Whatsapp Email SonicWall on Wednesday rolled out fixes for three SonicOS vulnerabilities, urging customers to immediately patch their Gen 6, Gen 7, and Gen 8 firewalls. “These vulnerabilities require immediate firmware updates to maintain security posture. One CVE is rated high severity, and two are rated medium severity,” the company warned . The high-severity flaw, tracked as CVE-2026-0204, allows attackers to bypass access controls and access certain management interface functions, SonicWall notes in an advisory . An attacker with access to the management interface could potentially modify firewall configurations and disable security protections. Tracked as CVE-2026-0205, the first medium-severity issue is a path traversal weakness that could be exploited to interact with restricted services. The second medium-severity defect, tracked as CVE-2026-0206, allows remote attackers to crash vulnerable firewalls, the company says. Advertisement. Scroll to continue reading. Both medium-severity vulnerabilities require authentication for successful exploitation. The three vulnerabilities impact dozens of firewalls running firmware versions up to 6.5.5.1-6n, 7.0.1-5169, 7.3.1-7013, and 8.1.0-8017. Fixes were included in firmware releases 6.5.5.2-28n, 7.3.2-7010, and 8.2.0-8009, and customers are advised to update their appliances as soon as possible, or to restrict management access to SSH only until patching is possible, by disabling HTTP/HTTPS-based management and SSLVPN on all interfaces. “Applying the patched firmware as soon as possible is strongly recommended,” SonicWall notes, underlining that management access restrictions are temporary mitigations. The company makes no mention of any of these security defects being exploited in the wild. Related: Critical cPanel & WHM Vulnerability Exploited as Zero-Day for Months Related: Robinhood Vulnerability Exploited for Phishing Attacks Related: Splunk Enterprise Update Patches Code Execution Vulnerability Related: Palo Alto Networks, SonicWall Patch High-Severity Vulnerabilities Written By Ionut Arghire Ionut Arghire is an international correspondent for SecurityWeek. More from Ionut Arghire Checkmarx Confirms Data Stolen in Supply Chain Attack Iranian Cyber Group Handala Targets US Troops in Bahrain Chrome 147, Firefox 150 Security Updates Rolling Out Alleged Chinese State Hacker Extradited to US Dozens of Open VSX Extension Clones Linked to GlassWorm Malware No Patch for New PhantomRPC Privilege Escalation Technique in Windows Spectrum Security Emerges From Stealth Mode With $19 Million Incomplete Windows Patch Opens Door to Zero-Click Attacks Latest News SAP NPM Packages Targeted in Supply Chain Attack Critical Gemini CLI Flaw Enabled Host Code Execution, Supply Chain Attacks EnOcean SmartServer Flaws Expose Buildings to Remote Hacking Critical cPanel & WHM Vulnerability Exploited as Zero-Day for Months ‘Copy Fail’ Logic Flaw in Linux Kernel Enables System Takeover Sandhills Medical Says Ransomware Breach Affects 170,000 Fresh LiteLLM Vulnerability Exploited Shortly After Disclosure Hundreds of Internet-Facing VNC Servers Expose ICS/OT Trending Daily Briefing Newsletter Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts. Webinar: A Step-by-Step Approach to AI Governance April 28, 2026 With "Shadow AI" usage becoming prevalent in organizations, learn how to balance the need for rapid experimentation with the rigorous controls required for enterprise-grade deployment. Register Virtual Event: Threat Detection and Incident Response Summit May 20, 2026 Delve into big-picture strategies to reduce attack surfaces, improve patch management, conduct post-incident forensics, and tools and tricks needed in a modern organization. Register People on the Move AutoNation has appointed Brian Fricke as Chief Information Security Officer. Varun Kohli has joined GetReal Security as Chief Marketing Officer. MongoDB has appointed Doug Bowers as Chief Information Security Officer. More People On The Move Expert Insights The Mythos Moment: Enterprises Must Fight Agents with Agents Only with the right platform and an agentic, AI-driven defense, will enterprises be able to protect themselves in the agentic era. (Etay Maor) Why Cybersecurity Must Rethink Defense in the Age of Autonomous Agents From autonomous code generation to decision-making systems that initiate actions without human intervention, the industry is entering a new phase. (Torsten George) Government Can’t Win the Cyber War Without the Private Sector Securing national resilience now depends on faster, deeper partnerships with the private sector. (Steve Durbin) The Hidden ROI of Visibility: Better Decisions, Better Behavior, Better Security Beyond monitoring and compliance, visibility acts as a powerful deterrent, shaping user behavior, improving collaboration, and enabling more accurate, data-driven security decisions. (Joshua Goldfarb) The New Rules of Engagement: Matching Agentic Attack Speed The cybersecurity response to AI-enabled nation-state threats cannot be incremental. It must be architectural. (Nadir Izrael) Flipboard Reddit Whatsapp Whatsapp Email