CVE-2026-4116
April 9, 2026, 3:16 p.m.
None
No Score
Description
Improper handling of Unicode encoding in SonicWall SMA1000 series appliances allows a remote authenticated SSLVPN user to bypass Workplace/Connect Tunnel TOTP authentication.
Product(s) Impacted
| Vendor | Product | Versions |
|---|---|---|
| Sonicwall |
|
|
Weaknesses
Common security weaknesses mapped to this vulnerability.
CWE-176
Improper Handling of Unicode Encoding
The product does not properly handle when an input contains Unicode encoding.
*CPE(s)
Affected systems and software identified for this CVE.
| Type | Vendor | Product | Version | Update | Edition | Language | Software Edition | Target Software | Target Hardware | Other Information |
|---|---|---|---|---|---|---|---|---|---|---|
| h | sonicwall | sma1000 | / | / | / | / | / | / | / | / |
Tags
Timeline
Published: April 9, 2026, 3:16 p.m.
Last Modified: April 9, 2026, 3:16 p.m.
Last Modified: April 9, 2026, 3:16 p.m.
Status : Received
CVE has been recently published to the CVE List and has been received by the NVD.
More infoSource
*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.