PatchSiren cyber security CVE debrief
CVE-2026-33390 Nozomi Networks CVE debrief
CVE-2026-33390 is an Incorrect Privilege Assignment vulnerability in Nozomi Networks CMC and Guardian products. An authenticated user with limited privileges can push administrative CLI commands through sync, altering device configuration and/or affecting availability. The vulnerability allows for potential configuration changes and availability impacts. Organizations should prioritize patching.
- Vendor
- Nozomi Networks
- Product
- Guardian
- CVSS
- HIGH 7.2
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-07-09
- Original CVE updated
- 2026-07-10
- Advisory published
- 2026-07-09
- Advisory updated
- 2026-07-10
Who should care
Organizations using Nozomi Networks CMC and Guardian products should prioritize patching to prevent potential configuration changes and availability impacts. Security teams and vulnerability management teams should review and implement mitigations.
Technical summary
The vulnerability allows an authenticated user with limited privileges to push administrative CLI commands through synchronization, potentially altering device configuration and affecting availability. This is due to Arc sensors receiving CLI permissions during synchronization. Nozomi Networks CMC and Guardian products are affected. The synchronization functionality improperly assigns CLI permissions, enabling an authenticated user to make configuration changes and impact system availability. Organizations should verify affected product deployments and review official advisories for specific guidance.
Defensive priority
High priority due to potential for configuration changes and availability impacts with a CVSS score of 7.2.
Recommended defensive actions
- Apply patches or updates provided by Nozomi Networks to address the vulnerability
- Restrict synchronization functionality to trusted users and networks
- Monitor system configurations and availability closely
- Implement additional access controls and logging for synchronization activities
- Review compensating controls for exposed systems while remediation is scheduled and verified
- Check relevant monitoring, detection, and logs for exposed assets that need extra review
- Track exceptions, retest remediated assets, and close the item only after evidence is documented
Evidence notes
The CVE record was published on 2026-07-09T08:16:48.233Z and was last modified on 2026-07-10T13:12:09.523Z. The NVD entry is currently Analyzed. The vulnerability affects Nozomi Networks CMC and Guardian products. Evidence is based on limited CVE and NVD information. Defenders should verify affected product deployments and review official advisories.
Official resources
-
CVE-2026-33390 CVE record
CVE.org
-
CVE-2026-33390 NVD detail
NVD
-
Source item URL
nvd_modified
-
Mitigation or vendor reference
[email protected] - Mitigation, Vendor Advisory
AI-assisted PatchSiren debrief based on the supplied source corpus. The CVE record was published on 2026-07-09T08:16:48.233Z and has not been modified since then. The NVD entry is currently Analyzed.