CVE-2026-4112

HIGH

SonicWall SMA1000 < 12.4.3-03245 (platform-hotfix) and < 12.5.0-02283 (platform-hotfix) - Authenticated SQL Injection

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2026-4112. PoCs published by Hann1bl3L3ct3r.

AI-analyzed exploit summary This repository provides a detailed technical analysis of CVE-2026-4112, a post-authentication blind SQL injection vulnerability in SonicWall SMA 8200v. It explains the root cause, exploitation mechanics, and privilege escalation chain, including code snippets and SQL query structures.

Description

Improper neutralization of special elements used in an SQL command (“SQL Injection”) in SonicWall SMA1000 series appliances allows a remote authenticated attacker with read-only administrator privileges to escalate privileges to primary administrator.

Exploits (1)

nomisec WRITEUP 1 stars

by Hann1bl3L3ct3r · poc

https://github.com/Hann1bl3L3ct3r/CVE-2026-4112

View Code ZIP pw:eip

This repository provides a detailed technical analysis of CVE-2026-4112, a post-authentication blind SQL injection vulnerability in SonicWall SMA 8200v. It explains the root cause, exploitation mechanics, and privilege escalation chain, including code snippets and SQL query structures.

Classification

Writeup 100%

Attack Type

Sqli

Complexity

Moderate

Reliability

Reliable

Target: SonicWall SMA 8200v (Firmware 12.5.0-02283)

Auth required

Prerequisites: Valid management console credentials (including read-only accounts) · Access to port 8443

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Apr 09, 2026 Full analysis →

References (1)

Core 1

Core References

Vendor Advisory vendor-advisory

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0003

Scores

CVSS v3 7.2

EPSS 0.0061

EPSS Percentile 44.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-89

Status published

Products (7)

SonicWall/SMA1000 12.4.3-03245 (platform-hotfix) and earlier versions.

SonicWall/SMA1000 12.5.0-02283 (platform-hotfix) and earlier versions.

sonicwall/sma6200_firmware < 12.4.3-03387

sonicwall/sma6210_firmware < 12.4.3-03387

sonicwall/sma7200_firmware < 12.4.3-03387

sonicwall/sma7210_firmware < 12.4.3-03387

sonicwall/sma8200v < 12.4.3-03387

Published Apr 09, 2026

Tracked Since Apr 09, 2026