Lucene search
ZdiCVE-2015-3990HistoryMay 20, 2015 - 6:59 p.m.
CVE-2015-3990
2015-05-2018:59:05
CWE-19
zdi
web.nvd.nist.gov
31
cve-2015-3990
gms viewpoint
dell sonicwall
gms
analyzer
uma em5000
remote command execution
security vulnerability
CVSS2
9
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
AI Score
7.4
Confidence
Low
EPSS
0.125
Percentile
95.5%
The GMS ViewPoint (GMSVP) web application in Dell Sonicwall GMS, Analyzer, and UMA EM5000 before 7.2 SP4 allows remote authenticated users to execute arbitrary commands via vectors related to configuration.
Affected configurations
Node
sonicwalluma_em5000_firmwareRange≤7.2
sonicwalluma_em5000Match-
Node
sonicwallanalyzerRange≤7.2
ORsonicwallglobal_management_systemRange≤7.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| sonicwall | uma_em5000_firmware | * | cpe:2.3:o:sonicwall:uma_em5000_firmware:*:*:*:*:*:*:*:* |
| sonicwall | uma_em5000 | - | cpe:2.3:h:sonicwall:uma_em5000:-:*:*:*:*:*:*:* |
| sonicwall | analyzer | * | cpe:2.3:a:sonicwall:analyzer:*:*:*:*:*:*:*:* |
| sonicwall | global_management_system | * | cpe:2.3:a:sonicwall:global_management_system:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2015-3990
2015-05-20 18:00:00
nvd
nvd
CVE-2015-3990
2015-05-20 18:59:05
zdi
zdi
prion
prion
Design/Logic Flaw
2015-05-20 18:59:00
CVSS2
9
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
AI Score
7.4
Confidence
Low
EPSS
0.125
Percentile
95.5%
Related for CVE-2015-3990