CVE-2026-0205: Path Traversal

Published Apr 29, 2026
·
Updated

A post-authentication Path Traversal vulnerability in SonicOS allows an attacker to interact with usually restricted services.

Affected Software

68 affected components
SonicWall SonicOS
All of the following
SonicWall SonicOS<6.5.5.2-28n
Any of the following
SonicWall Nsa 2650
SonicWall Nsa 3600
SonicWall Nsa 3650
SonicWall Nsa 4600
SonicWall Nsa 4650
SonicWall Nsa 5600
SonicWall Nsa 5650
SonicWall Nsa 6600
SonicWall Nsa 6650
SonicWall Sm 9200
SonicWall Sm 9250
SonicWall Sm 9400
SonicWall Sm 9450
SonicWall Sm 9600
SonicWall Sm 9650
SonicWall Soho 250
SonicWall Soho 250w
SonicWall Sohow
SonicWall Tz 300
SonicWall Tz 300p
SonicWall Tz 300w
SonicWall Tz 350
SonicWall Tz 350w
SonicWall Tz 400
SonicWall Tz 400w
SonicWall Tz 500
SonicWall Tz 500w
SonicWall Tz 600
SonicWall Tz 600p
All of the following
Any of the following
SonicWall SonicOS>=7.0.0.0<=7.0.1-5169
SonicWall SonicOS>=7.1.1-7040<7.3.2-7010
Any of the following
SonicWall Nsa 2700
SonicWall Nsa 3700
SonicWall Nsa 4700
SonicWall Nsa 5700
SonicWall Nsa 6700
SonicWall Nssp 10700
SonicWall Nssp 11700
SonicWall Nssp 13700
SonicWall Nssp 15700
SonicWall Nsv 270
SonicWall Nsv 470
SonicWall Nsv 870
SonicWall Tz270
SonicWall Tz270w
SonicWall Tz370
SonicWall Tz370w
SonicWall Tz470
SonicWall Tz470w
SonicWall Tz570
SonicWall Tz570p
SonicWall Tz570w
SonicWall Tz670
All of the following
SonicWall SonicOS>=8.0.0-8035<8.2.0-8009
Any of the following
SonicWall Nsa 2800
SonicWall Nsa 3800
SonicWall Nsa 4800
SonicWall Nsa 5800
SonicWall Tz280
SonicWall Tz280w
SonicWall Tz380
SonicWall Tz380w
SonicWall Tz480
SonicWall Tz580
SonicWall Tz680
SonicWall TZ80

Event History

Apr 29, 2026
CVE Published
via MITRE·04:18 PM
Data Sourced
via MITRE·04:18 PM
DescriptionWeakness
Data Sourced
via NVD·05:16 PM
DescriptionSeverityWeaknessAffected Software
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Frequently Asked Questions

1

What is the severity of CVE-2026-0205?

CVE-2026-0205 has a high severity rating due to its potential to allow unauthorized access to restricted services.

2

How do I fix CVE-2026-0205?

To fix CVE-2026-0205, apply the latest security patches provided by SonicWall for SonicOS.

3

What systems are affected by CVE-2026-0205?

CVE-2026-0205 affects SonicWall SonicOS, particularly post-authentication environments.

4

What can an attacker do with CVE-2026-0205?

An attacker can exploit CVE-2026-0205 to perform unauthorized actions on restricted services after authentication.

5

Is there a workaround for CVE-2026-0205?

Currently, the recommended approach for CVE-2026-0205 is to upgrade to the latest version of SonicOS.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203