CVE-2026-4114
published 2026-04-09CVE-2026-4114: Improper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN admin to bypass AMC TOTP authentication.
PriorityP342medium6.6CVSS 3.1
AVNACHPRHUINSUCHIHAH
EPSS
0.60%
44.1th percentile
Improper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN admin to bypass AMC TOTP authentication.
Affected
13 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sonicwall | sma | — | — |
| sonicwall | sma1000 | — | — |
| sonicwall | sma1000 | — | — |
| sonicwall | sma6200_firmware | < 12.4.3-03387 | 12.4.3-03387 |
| sonicwall | sma6200_firmware | >= 12.5.0 < 12.5.0-02624 | 12.5.0-02624 |
| sonicwall | sma6210_firmware | < 12.4.3-03387 | 12.4.3-03387 |
| sonicwall | sma6210_firmware | >= 12.5.0 < 12.5.0-02624 | 12.5.0-02624 |
| sonicwall | sma7200_firmware | < 12.4.3-03387 | 12.4.3-03387 |
| sonicwall | sma7200_firmware | >= 12.5.0 < 12.5.0-02624 | 12.5.0-02624 |
| sonicwall | sma7210_firmware | < 12.4.3-03387 | 12.4.3-03387 |
| sonicwall | sma7210_firmware | >= 12.5.0 < 12.5.0-02624 | 12.5.0-02624 |
| sonicwall | sma8200v | < 12.4.3-03387 | 12.4.3-03387 |
| sonicwall | sma8200v | >= 12.5.0 < 12.5.0-02624 | 12.5.0-02624 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
SonicWall
CVE-2026-4114: Improper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN admin to bypass AMC TOTP authenticat
vendor_sonicwall·2026-04-09
CVE-2026-4114 CWE-176 CVE-2026-4114: Improper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN admin to bypass AMC TOTP authenticat
CVE-2026-4114: Improper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN admin to bypass AMC TOTP authentication.
VulDB
SonicWall SMA1000 AMC TOTP Authentication unicode encoding (SNWLID-2026-0003 / EUVD-2026-20906)
vuldb·2026-04-09
CVE-2026-4114 [CRITICAL] SonicWall SMA1000 AMC TOTP Authentication unicode encoding (SNWLID-2026-0003 / EUVD-2026-20906)
A vulnerability was found in SonicWall SMA1000. It has been declared as critical. Affected is an unknown function of the component AMC TOTP Authentication. The manipulation results in improper handling of unicode encoding.
This vulnerability is identified as CVE-2026-4114. The attack can be executed remotely. There is not any exploit available.
GHSA
GHSA-q2cw-g735-jvcc: Improper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN admin to bypass AMC TOTP authenticat
ghsa_unreviewed·2026-04-09
CVE-2026-4114 CWE-176 GHSA-q2cw-g735-jvcc: Improper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN admin to bypass AMC TOTP authenticat
Improper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN admin to bypass AMC TOTP authentication.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2026-04-09
Published