Three SonicOS vulnerabilities including an access control bypass (CVE-2026-0204) threaten Gen 6, 7, and 8 firewalls, with attackers able to modify configurations and disable security protections.
SonicWall has rolled out fixes for three SonicOS vulnerabilities, urging customers to immediately patch their Gen 6, Gen 7, and Gen 8 firewalls. The high-severity flaw, tracked as CVE-2026-0204, allows attackers to bypass access controls and access certain management interface functions. An attacker with access to the management interface could potentially modify firewall configurations and disable security protections.
Two medium-severity issues were also addressed: CVE-2026-0205, a path traversal weakness that could be exploited to interact with restricted services, and CVE-2026-0206, which allows remote attackers to crash vulnerable firewalls. Both medium-severity vulnerabilities require authentication for successful exploitation.
The vulnerabilities impact dozens of firewall models running firmware versions up to 6.5.5.1-6n, 7.0.1-5169, 7.3.1-7013, and 8.1.0-8017. Fixes are included in firmware releases 6.5.5.2-28n, 7.3.2-7010, and 8.2.0-8009. As a temporary mitigation, SonicWall recommends restricting management access to SSH only by disabling HTTP/HTTPS-based management and SSLVPN on all interfaces until patching is possible.
SonicWall makes no mention of these security defects being exploited in the wild, but applying the patched firmware as soon as possible is strongly recommended given the potential for configuration tampering and firewall crashes.
Source: SecurityWeek — SonicWall Urges Immediate Patching of Firewall Vulnerabilities Affecti
