Buffer overflow in Sonicwall Sonicos

CVE-2026-0399

Multiple post-authentication stack-based buffer overflow vulnerabilities in the SonicOS management interface due to improper bounds checking in a API endpoint.

Vulnerability class: Buffer Overflow

EPSS: 0.001 (22.8th percentile) — read the EPSS interpretation.

Affected products

Sonicwall Sonicos — versions 7.0.1-5169 and older versions, 7.3.1-7013 and older versions, 8.1.0-8017 and older versions

Weakness classification (CWE)

CWE-121 — Stack-based Buffer Overflow

References

psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0001 (vendor-advisory)