Rapid7 Blog ·EN Vendor research Exploited in the wildSMA1000 Series
Rapid7 MDR Team Discovers New SonicWall SMA1000 Zero Days being Actively Exploited (CVE-2026-15409, CVE-2026-15410)
Overview
On July 14, 2026, SonicWall published a security advisory addressing two vulnerabilities affecting SMA1000 Series remote access appliances, including the critical server-side request forgery (SSRF) vulnerability CVE-2026-15409">CVE-2026-15409 (CVSS 10.0) and the high-severity code injection vulnerability CVE-2026-15410">CVE-2026-15410. The advisory urges customers to immediately apply the latest platform hotfix releases.…