CVE-2026-3468

A stored Cross-Site Scripting (XSS) vulnerability has been identified in the SonicWall Email Security appliance due to improper neutralization of user-supplied input during web page generation, allowing a remote authenticated attacker as admin user to potentially execute arbitrary JavaScript code.

More information : https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2026-0002