PatchSiren

PatchSiren cyber security CVE debrief

CVE-2026-33390 Nozomi Networks CVE debrief

CVE-2026-33390 is an Incorrect Privilege Assignment vulnerability in Nozomi Networks CMC and Guardian products. An authenticated user with limited privileges can push administrative CLI commands through sync, altering device configuration and/or affecting availability. The vulnerability allows for potential configuration changes and availability impacts. Organizations should prioritize patching.

Vendor
Nozomi Networks
Product
Guardian
CVSS
HIGH 7.2
CISA KEV
Not listed in stored evidence
Original CVE published
2026-07-09
Original CVE updated
2026-07-10
Advisory published
2026-07-09
Advisory updated
2026-07-10

Who should care

Organizations using Nozomi Networks CMC and Guardian products should prioritize patching to prevent potential configuration changes and availability impacts. Security teams and vulnerability management teams should review and implement mitigations.

Technical summary

The vulnerability allows an authenticated user with limited privileges to push administrative CLI commands through synchronization, potentially altering device configuration and affecting availability. This is due to Arc sensors receiving CLI permissions during synchronization. Nozomi Networks CMC and Guardian products are affected. The synchronization functionality improperly assigns CLI permissions, enabling an authenticated user to make configuration changes and impact system availability. Organizations should verify affected product deployments and review official advisories for specific guidance.

Defensive priority

High priority due to potential for configuration changes and availability impacts with a CVSS score of 7.2.

Recommended defensive actions

  • Apply patches or updates provided by Nozomi Networks to address the vulnerability
  • Restrict synchronization functionality to trusted users and networks
  • Monitor system configurations and availability closely
  • Implement additional access controls and logging for synchronization activities
  • Review compensating controls for exposed systems while remediation is scheduled and verified
  • Check relevant monitoring, detection, and logs for exposed assets that need extra review
  • Track exceptions, retest remediated assets, and close the item only after evidence is documented

Evidence notes

The CVE record was published on 2026-07-09T08:16:48.233Z and was last modified on 2026-07-10T13:12:09.523Z. The NVD entry is currently Analyzed. The vulnerability affects Nozomi Networks CMC and Guardian products. Evidence is based on limited CVE and NVD information. Defenders should verify affected product deployments and review official advisories.

Official resources

AI-assisted PatchSiren debrief based on the supplied source corpus. The CVE record was published on 2026-07-09T08:16:48.233Z and has not been modified since then. The NVD entry is currently Analyzed.