CVE-2026-3470

LOW

SonicWall Email Security <=10.0.34.8215 - Data Corruption

Title source: llm

Description

A vulnerability exists in the SonicWall Email Security appliance due to improper input sanitization that may lead to data corruption, allowing a remote authenticated attacker as admin user could exploit this issue by providing crafted input that corrupts application database.

References (1)

[Vendor Advisory] https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0002

Scores

CVSS v3 3.8

EPSS 0.0015

EPSS Percentile 35.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-20

Status published

Products (3)

SonicWall/Email Security 10.0.34.8215 and earlier versions

SonicWall/Email Security 10.0.34.8223 and earlier versions

sonicwall/email_security < 10.0.35.8405

Published Mar 31, 2026

Tracked Since Apr 01, 2026