Data Corruption Vulnerability in SonicWall Email Security Appliance
CVE-2026-3470

3.8LOW

Key Information:

Vendor: Sonicwall
Status: Email Security
Vendor: CVE Published:; 31 March 2026

What is CVE-2026-3470?

A vulnerability is present in the SonicWall Email Security Appliance due to the improper sanitization of user inputs. This flaw can lead to data corruption and may be exploited by a remote authenticated attacker with admin privileges. By submitting specially crafted inputs, the attacker can compromise the integrity of the application’s database, potentially affecting the overall security and functionality of the email security solution.

Affected Version(s)

Email Security Linux 10.0.34.8215 and earlier versions

Email Security Linux 10.0.34.8223 and earlier versions

References

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-202...

vendor-advisory

CVSS V3.1

Score:

3.8

Severity:

LOW

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 31, 2026
Vulnerability Reserved
Mar 3, 2026

Credit

Brian Mariani of DigitalCanion SA - www.digitalcanion.com

CVE-2026-3470 Data

JSON

Sonicwall

What is CVE-2026-3470?

Affected Version(s)

References

CVSS V3.1

Timeline

Credit