CVE-2026-0400
MEDIUMSonicOS - Format String DoS
Title source: llmDescription
A post-authentication Format String vulnerability in SonicOS allows a remote attacker to crash a firewall.
Scores
CVSS v3
4.9
EPSS
0.0019
EPSS Percentile
40.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
Classification
CWE
CWE-134
Status
published
Affected Products (1)
sonicwall/sonicos
< 7.3.2-7010
Timeline
Published
Feb 24, 2026
Tracked Since
Feb 24, 2026