CVE-2026-0205 - Vulnerability Details - OpenCVE

A post-authentication Path Traversal vulnerability in SonicOS allows an attacker to interact with usually restricted services.

No CVSS v4.0

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact High

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable no

Technical Impact partial

Vendors	Products
Sonicwall	Sonicos

No data.

No data.

References

Link	Providers
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0004

History

Thu, 30 Apr 2026 04:15:00 +0000

Type	Values Removed	Values Added
Title		Post-Authentication Path Traversal in SonicOS Enabling Restricted Service Access

Wed, 29 Apr 2026 20:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Sonicwall Sonicwall sonicos
Vendors & Products		Sonicwall Sonicwall sonicos

Wed, 29 Apr 2026 17:15:00 +0000

Type	Values Removed	Values Added
Metrics		cvssV3_1 `{'score': 6.8, 'vector': 'CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H'}` ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Wed, 29 Apr 2026 16:45:00 +0000

Type	Values Removed	Values Added
Description		A post-authentication Path Traversal vulnerability in SonicOS allows an attacker to interact with usually restricted services.
Weaknesses		CWE-35
References		https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0004

MITRE

Status: PUBLISHED

Assigner: sonicwall

Published: 2026-04-29T16:18:45.856Z

Updated: 2026-04-29T16:59:41.635Z

Reserved: 2025-10-30T10:54:31.125Z

Link: CVE-2026-0205

Vulnrichment

Updated: 2026-04-29T16:59:34.204Z

NVD

Status : Awaiting Analysis

Published: 2026-04-29T17:16:40.480

Modified: 2026-04-30T15:11:12.703

Link: CVE-2026-0205

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-0205", "assignerOrgId": "44b2ff79-1416-4492-88bb-ed0da00c7315", "state": "PUBLISHED", "assignerShortName": "sonicwall", "dateReserved": "2025-10-30T10:54:31.125Z", "datePublished": "2026-04-29T16:18:45.856Z", "dateUpdated": "2026-04-29T16:59:41.635Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "44b2ff79-1416-4492-88bb-ed0da00c7315", "shortName": "sonicwall", "dateUpdated": "2026-04-29T16:18:45.856Z"}, "datePublic": "2026-04-29T16:18:00.000Z", "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-35", "description": "CWE-35 Path traversal: '.../...//'", "type": "CWE"}]}], "affected": [{"vendor": "SonicWall", "product": "SonicOS", "platforms": ["Linux", "Gen6", "Gen7", "Gen8"], "versions": [{"status": "affected", "version": "6.5.5.1-6n and older versions"}, {"status": "affected", "version": "7.0.1-5169 and older versions"}, {"status": "affected", "version": "7.3.1-7013 and older versions"}, {"status": "affected", "version": "8.1.0-8017 and older versions"}], "defaultStatus": "unknown"}], "descriptions": [{"lang": "en", "value": "A post-authentication Path Traversal vulnerability in SonicOS allows an attacker to interact with usually restricted services.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "A post-authentication Path Traversal vulnerability in SonicOS allows an attacker to interact with usually restricted services."}]}], "references": [{"url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0004", "tags": ["vendor-advisory"]}], "source": {"advisory": "SNWLID-2026-0004", "discovery": "EXTERNAL"}, "x_generator": {"engine": "Vulnogram 1.0.2"}}, "adp": [{"metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.8, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2026-04-29T16:59:18.475980Z", "id": "CVE-2026-0205", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-29T16:59:41.635Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.8, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2026-0205", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-04-29T16:59:18.475980Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-29T16:59:34.204Z"}}], "cna": {"source": {"advisory": "SNWLID-2026-0004", "discovery": "EXTERNAL"}, "affected": [{"vendor": "SonicWall", "product": "SonicOS", "versions": [{"status": "affected", "version": "6.5.5.1-6n and older versions"}, {"status": "affected", "version": "7.0.1-5169 and older versions"}, {"status": "affected", "version": "7.3.1-7013 and older versions"}, {"status": "affected", "version": "8.1.0-8017 and older versions"}], "platforms": ["Linux", "Gen6", "Gen7", "Gen8"], "defaultStatus": "unknown"}], "datePublic": "2026-04-29T16:18:00.000Z", "references": [{"url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0004", "tags": ["vendor-advisory"]}], "x_generator": {"engine": "Vulnogram 1.0.2"}, "descriptions": [{"lang": "en", "value": "A post-authentication Path Traversal vulnerability in SonicOS allows an attacker to interact with usually restricted services.", "supportingMedia": [{"type": "text/html", "value": "A post-authentication Path Traversal vulnerability in SonicOS allows an attacker to interact with usually restricted services.", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-35", "description": "CWE-35 Path traversal: '.../...//'"}]}], "providerMetadata": {"orgId": "44b2ff79-1416-4492-88bb-ed0da00c7315", "shortName": "sonicwall", "dateUpdated": "2026-04-29T16:18:45.856Z"}}}, "cveMetadata": {"cveId": "CVE-2026-0205", "state": "PUBLISHED", "dateUpdated": "2026-04-29T16:59:41.635Z", "dateReserved": "2025-10-30T10:54:31.125Z", "assignerOrgId": "44b2ff79-1416-4492-88bb-ed0da00c7315", "datePublished": "2026-04-29T16:18:45.856Z", "assignerShortName": "sonicwall"}, "dataVersion": "5.2"}