SonicWall warns of active exploitation of two SMA 1000 zero-days


SonicWall warns of active exploitation of two SMA 1000 zero-days

Pierluigi Paganini
July 15, 2026

SonicWall warns of active attacks exploiting two SMA 1000 zero-days, including a flaw enabling arbitrary command execution.

SonicWall confirmed the active exploitation of two zero-day vulnerabilities affecting Secure Mobile Access (SMA) 1000 appliances. The vulnerabilities were internally discovered and reported by Adam Babis of the company’s PSIRT.

The company investigated multiple incidents indicating these vulnerabilities are being actively exploited in the wild.

The first vulnerability, tracked as CVE-2026-15409 (CVSS score of 10.0), is a Server-side request forgery (SSRF) issue that a remote unauthenticated attacker could exploit to potentially cause the appliance to make requests to an unintended location.

“A Server-side request forgery (SSRF) vulnerability has been identified in the SMA1000 Appliance Work Place interface. A remote unauthenticated attacker could potentially cause the appliance to make requests to unintended location.” reads the advisory.

The second vulnerability, tracked as CVE-2026-15410 (CVSS score of 7.2), is a post-authentication code injection flaw in the Appliance Management Console (AMC) that a remote authenticated attacker could exploit to execute arbitrary operating system commands as administrator under certain conditions.

“Post-authentication improper control of generation of code (‘Code Injection’) vulnerability has been identified in the SMA1000 Appliance Management Console (AMC) which in specific conditions could potentially enable a remote authenticated attacker as administrator to execute arbitrary OS commands.” continues the advisory. “SonicWall PSIRT has investigated multiple cases indicating the active exploitation of the vulnerabilities described in this advisory.”

The vulnerabilities impact the following software and versions:

Affected Product Affected Version(s)
SMA1000 Models – 6210, 7210, 8200v  12.4.3-03245, 12.4.3-03387 and 12.4.3-03434 (platform-hotfix)12.5.0-02283, 12.5.0-02624 and 12.5.0-02800 (platform-hotfix)

The company addressed the issue in the following versions:

  • 12.4.3-03453 (platform-hotfix) and higher versions.
  • 12.5.0-02835 (platform-hotfix) and higher versions.

Customers should review system logs for indicators of compromise, such as unusual requests to login or logout API endpoints, suspicious WebSocket proxy connections, evidence of hotfix rollbacks using path traversal techniques, or unauthorized API routes in the appliance configuration.

SonicWall strongly recommends upgrading to the latest hotfix, performing a full forensic investigation, and, if compromise is confirmed, re-imaging or redeploying the appliance, resetting all user and administrator passwords, and re-enrolling TOTP tokens.

Sean Koessel and Steven Adair of Volexity helped advance PSIRT investigation, leading to the identification of an additional IOC.

“Customers are strongly urged to upgrade to the hotfix release as soon as possible to remediate these vulnerabilities.” concludes the advisory.

In December, SonicWall urged customers to address another SMA1000 Appliance Management Console issue that was exploited as a zero-day in attacks in the wild.

The flaw is a local privilege escalation issue which is due to insufficient authorization in the SonicWall SMA1000 appliance management console (AMC).

“A local privilege escalation vulnerability due to insufficient authorization in the SonicWall SMA1000 appliance management console (AMC).” reads the advisory published by the company. “Please note that SonicWall Firewall products are not affected by this vulnerability.”

The vendor warned customers that the vulnerability was chained with CVE-2025-23006 (CVSS score 9.8) in zero-day attacks to escalate privileges. The vendor has not disclosed details about the attacks that exploited the flaw as a zero-day, nor the attackers’ motivations.

Follow me on Twitter: @securityaffairs and Facebook and Mastodon

Pierluigi Paganini

(SecurityAffairs – hacking, SMA 1000)







Source link

Leave a Reply

Subscribe to Our Newsletter

Get our latest articles delivered straight to your inbox. No spam, we promise.

Recent Reviews


TL;DR

India debates sovereign AI after the US forced Anthropic to kill Fable 5, with proposals for a $5B fund and calls to embrace open-source models.

When the US government ordered Anthropic to shut down Fable 5 and Mythos 5 on 12 June, the export control directive was aimed at restricting foreign nationals from accessing America’s most capable AI. In India, Anthropic’s second-largest market, it landed as a warning shot about what happens when your AI infrastructure runs on someone else’s politics.

The suspension cut off Indian developers and enterprises from Claude’s most advanced models overnight. India’s Claude run-rate revenue had doubled since October 2025, and Tata Consultancy Services had announced a partnership just one day earlier, on 11 June, to train 50,000 employees on Claude and build a dedicated Anthropic business unit. That deal is now in limbo.

The timing has turned what was already a simmering debate about AI sovereignty into a full strategic reckoning. Proposals that sounded ambitious a week ago now sound urgent.

The 💜 of EU tech

The latest rumblings from the EU tech scene, a story from our wise ol’ founder Boris, and some questionable AI art. It’s free, every week, in your inbox. Sign up now!

Mohandas Pai, former Infosys CFO and one of India’s most prominent tech investors, has called for a ₹50,000 crore (roughly $5 billion) annual sovereign AI fund. He has also proposed a ₹2 lakh crore (approximately $21 billion) credit guarantee to finance cloud infrastructure, hardware procurement, and semiconductor development. The figures dwarf the government’s existing commitment.

India approved its IndiaAI Mission in March 2024 with a budget of ₹10,372 crore, approximately $1.25 billion. The programme has deployed around 38,000 GPUs so far. Pai’s proposal would quadruple annual spending and add a credit backstop an order of magnitude larger.

Sridhar Vembu, the founder of Zoho, has gone further. He argued that India should embrace smaller and open-source models, including Chinese ones, rather than depend on American frontier systems that can be switched off by executive order. “Technology is the ultimate weapon,” Vembu said. “Globalization is dead and Bharat must find her own way ahead.

The argument has teeth because the suspension demonstrated exactly the vulnerability Vembu is describing. Amazon’s CEO reportedly triggered the government crackdown by telling Treasury Secretary Scott Bessent that researchers had used Fable 5 to obtain information that could be used in cyberattacks. Anthropic called the action disproportionate, but compliance was immediate and global.

Policy expert Prasanto Roy put it bluntly: “American AI models are bound to American geopolitics.” For Indian enterprises that had built workflows around Claude, the lesson was that access to frontier AI is a privilege that can be revoked without notice, without consultation, and without regard for the commercial relationships it disrupts.

The Indian startup ecosystem is already adapting. Sarvam, a Bengaluru-based AI company, released 30-billion and 105-billion parameter open-source models at the India AI Impact Summit in 2026. Krutrim, founded by Ola’s Bhavish Aggarwal, has pivoted from building foundational models to providing cloud and AI infrastructure services, reporting ₹3 billion in revenue for fiscal year 2026.

Neither company is close to matching the capabilities of Fable 5 or Mythos 5. But the argument for sovereign AI was never about matching frontier performance immediately. It is about ensuring that the floor does not fall out when Washington makes a unilateral decision about who gets to use which models.

Aakrit Vaish, founder of the AI startup Activate, said the suspension “completely changes things” for the sovereign AI debate. Vijay Rayapati, CEO of Atomicwork, raised concerns about what the precedent means for Indian companies with multi-country teams that depend on American AI providers. If the US can shut off model access to enforce export controls, any country that relies on American AI is one policy decision away from disruption.

Not everyone agrees that India needs to build its own frontier models. Hemant Mohapatra, a partner at Lightspeed Venture Partners, argued that talent and compute access matter more than capital for building competitive AI. India has the engineering workforce, but the compute gap is significant, and closing it requires either massive domestic investment or continued access to foreign cloud infrastructure.

Anthropic opened a Bengaluru office as part of its India expansion, and the TCS partnership was designed to be a cornerstone of its enterprise strategy in the country. Whether those plans survive the suspension intact depends on how quickly Anthropic can restore access and whether Indian enterprises still trust a provider whose most capable models can vanish overnight.

The broader pattern is unmistakable. The US has spent four years tightening controls on AI technology, from chip export restrictions to model-level interventions. Each escalation pushes more countries toward the conclusion that dependence on American AI infrastructure carries political risk. India, with its 1.4 billion people and rapidly growing technology sector, is now asking whether it can afford that risk, and what it would cost to eliminate it.

The Opendoor layoffs in June 2026, which shut the company’s India office and affected roughly 250 employees, added another dimension. CEO Kaz Nejatian cited AI-native teams as the reason, suggesting that some US companies are using AI to reduce their reliance on Indian engineering talent at the same time that India is debating its reliance on American AI. The relationship is becoming less complementary and more competitive.

For now, the sovereign AI proposals remain proposals. Pai’s fund has no legislative vehicle, Vembu’s call for open-source adoption has no coordinated policy framework, and the IndiaAI Mission’s GPU deployment is still in early stages.

But the Anthropic suspension has done something that years of policy papers and conference speeches could not: it has given the sovereign AI movement a concrete, recent, and viscerally felt example of why dependence on foreign AI is a strategic liability. The debate is no longer theoretical.



Source link