CVE-2026-0205

MEDIUM
Published Apr 29, 2026 Modified May 5, 2026 CWE-35

Description

A post-authentication Path Traversal vulnerability in SonicOS allows an attacker to interact with usually restricted services.

CVSS v3.1 Score

6.8
MEDIUM
CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H

EPSS — Exploit Prediction

0.0002
Probability of exploitation
0.04%
Percentile rank

EPSS estimates the probability that this vulnerability will be exploited in the wild within the next 30 days. A higher score means more likely to be exploited.

Weakness Type (CWE)

CWE-35 CWE-35

Affected Products

Vendor Product
sonicwall sonicos
sonicwall nsa_2650
sonicwall nsa_3600
sonicwall nsa_3650
sonicwall nsa_4600
sonicwall nsa_4650
sonicwall nsa_5600
sonicwall nsa_5650
sonicwall nsa_6600
sonicwall nsa_6650
sonicwall sm_9200
sonicwall sm_9250
sonicwall sm_9400
sonicwall sm_9450
sonicwall sm_9600
sonicwall sm_9650
sonicwall soho_250
sonicwall soho_250w
sonicwall sohow
sonicwall tz_300
sonicwall tz_300p
sonicwall tz_300w
sonicwall tz_350
sonicwall tz_350w
sonicwall tz_400
sonicwall tz_400w
sonicwall tz_500
sonicwall tz_500w
sonicwall tz_600
sonicwall tz_600p
sonicwall sonicos
sonicwall sonicos
sonicwall nsa_2700
sonicwall nsa_3700
sonicwall nsa_4700
sonicwall nsa_5700
sonicwall nsa_6700
sonicwall nssp_10700
sonicwall nssp_11700
sonicwall nssp_13700
sonicwall nssp_15700
sonicwall nsv_270
sonicwall nsv_470
sonicwall nsv_870
sonicwall tz270
sonicwall tz270w
sonicwall tz370
sonicwall tz370w
sonicwall tz470
sonicwall tz470w
sonicwall tz570
sonicwall tz570p
sonicwall tz570w
sonicwall tz670
sonicwall sonicos
sonicwall nsa_2800
sonicwall nsa_3800
sonicwall nsa_4800
sonicwall nsa_5800
sonicwall tz280
sonicwall tz280w
sonicwall tz380
sonicwall tz380w
sonicwall tz480
sonicwall tz580
sonicwall tz680
sonicwall tz80

References

Frequently Asked Questions

What is CVE-2026-0205? +
A post-authentication Path Traversal vulnerability in SonicOS allows an attacker to interact with usually restricted services. It has a CVSS v3.1 base score of 6.8 (MEDIUM).
How severe is CVE-2026-0205? +
CVE-2026-0205 has a CVSS v3.1 score of 6.8 out of 10, rated MEDIUM. This is a medium-severity vulnerability that should be remediated as part of regular maintenance. The EPSS score is 0.0002, placing it in the 0th percentile for exploitation probability.
What products are affected by CVE-2026-0205? +
CVE-2026-0205 affects products from sonicwall, specifically: nsa_2650, nsa_2700, nsa_2800, nsa_3600, nsa_3650, nsa_3700, nsa_3800, nsa_4600, nsa_4650, nsa_4700, nsa_4800, nsa_5600, nsa_5650, nsa_5700, nsa_5800, nsa_6600, nsa_6650, nsa_6700, nssp_10700, nssp_11700, nssp_13700, nssp_15700, nsv_270, nsv_470, nsv_870, sm_9200, sm_9250, sm_9400, sm_9450, sm_9600, sm_9650, soho_250, soho_250w, sohow, sonicos, tz270, tz270w, tz280, tz280w, tz370, tz370w, tz380, tz380w, tz470, tz470w, tz480, tz570, tz570p, tz570w, tz580, tz670, tz680, tz80, tz_300, tz_300p, tz_300w, tz_350, tz_350w, tz_400, tz_400w, tz_500, tz_500w, tz_600, tz_600p. Check the affected products table above for specific version ranges.
How do I check if I'm vulnerable to CVE-2026-0205? +
You can use Secably's free Website Scanner to check your website for known vulnerabilities. For infrastructure scanning, use the Port Scanner to identify exposed services that may be affected. Check the vendor advisories linked above for specific patch and version information.

Related Vulnerabilities

CVE-2026-6074

Intrado 911 Emergency Gateway (EGW) 5.x, 6.x, and 7.x contain a path traversal vulnerability in the download_debuglog_file.php endpoint used for …
CVE-2025-0858

A vulnerability was discovered in the firmware builds up to 8.2.1.0820 in certain Poly devices. The firmware flaw does not …
CVE-2025-5598

Path Traversal vulnerability in WF Steuerungstechnik GmbH airleader MASTER allows Retrieve Embedded Sensitive Data.This issue affects airleader MASTER: 3.0046.
CVE-2025-53417

DIAView (v4.2.0 and prior) - Directory Traversal Information Disclosure Vulnerability
CVE-2024-49770

`oak` is a middleware framework for Deno's native HTTP server, Deno Deploy, Node.js 16.5 and later, Cloudflare Workers and Bun. …
CVE-2024-11136

The default TCL Camera application exposes a provider vulnerable to path traversal vulnerability. Malicious application can supply malicious URI path …

Don't wait for an exploit

Scan your website for vulnerabilities like CVE-2026-0205 — free, no signup required.

Start Free Scan