SonicWall warns of SMA1000 flaws exploited in zero-day attacks, patch now
SonicWall has issued an urgent patch after two zero-day vulnerabilities in its SMA1000 series appliances were exploited in the wild.
Velocity timeline
How fast coverage is spreading — measured hourly from article rate × source diversity. How this works →
The brief
SonicWall is warning users to patch their SMA1000 series appliances following the exploitation of two zero-day flaws. The vulnerabilities are identified as CVE-2026-15409 and CVE-2026-15410.
Coverage from BleepingComputer, The Hacker News, and Help Net Security emphasizes the severity of the attacks, noting that one of the flaws could allow the execution of admin commands. Regional security bodies, including the Cyber Security Agency of Singapore and the Hong Kong Computer Emergency Response Team Coordination Centre, have also released alerts regarding these multiple vulnerabilities.
Users are advised to apply the necessary patches immediately to secure their systems against these exploited flaws.
Synthesized by Newsylist from the headlines below under a strict no-invention contract. ✓ fact-checked: all claims supported by sources Updated just now.
Quick answers
Which specific products are affected?
The vulnerabilities impact the SonicWall SMA1000 series products.
What are the CVE identifiers for these flaws?
The identified vulnerabilities are CVE-2026-15409 and CVE-2026-15410.
What is the potential impact of these vulnerabilities?
According to The Hacker News, one of the zero-day exploits could enable the use of admin commands.
Coverage (6)
- SonicWall Issues Urgent SMA Patch Warning for Two Zero-Day Exploits SecurityWeek · 12h ago
- Multiple Vulnerabilities in SonicWall SMA1000 Series Cyber Security Agency of Singapore · 12h ago
- SonicWall SMA appliances targeted in zero-day attacks (CVE-2026-15409, CVE-2026-15410) Help Net Security · 12h ago
- SonicWall SMA1000 Series Products Multiple Vulnerabilities Hong Kong Computer Emergency Response Team Coordination Centre · 12h ago
- Two SonicWall SMA 1000 Zero-Days Exploited, One Could Enable Admin Commands The Hacker News · 12h ago
- SonicWall warns of SMA1000 flaws exploited in zero-day attacks, patch now BleepingComputer · 12h ago broke it first
People, places & organizations
Topics
Related trends
iOS 26.6 Will Warn You About Malicious iMessages
Apple is reportedly integrating a new security feature in iOS 26.6 to alert users about malicious iMessages.
Microsoft Entra ID gets passkeys default authentication starting September
Microsoft is replacing passwords with passkeys as the default authentication method for Entra ID starting in September.
Mozilla Firefox to follow Google Chrome, Microsoft Edge with new release cadence
Mozilla Firefox is doubling its update frequency to match the release cadences of Google Chrome and Microsoft Edge.
The US government warns that Russia state hackers are coming after your router
The US government and international allies are warning that Russian state hackers are targeting vulnerable routers and networking devices worldwide.
Pentagon announces ‘immediate suspension’ of CMMC Phase II mandates
The Pentagon has issued an immediate suspension of CMMC Phase II cybersecurity mandates for defense contractors to review the program's impact.
EU and Britain target Russian intelligence officers over a major cyberspying campaign
The EU and UK have launched their first joint cyber sanctions targeting a secret Russian FSB unit linked to a decade of cyber sabotage.