CVE-2019-7478

2019-12-3023:50:10

CWE-89

sonicwall

www.cve.org

9.9 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

49.5%

JSON

A vulnerability in GMS allow unauthenticated user to SQL injection in Webservice module. This vulnerability affected GMS versions GMS 8.4, 8.5, 8.6, 8.7, 9.0 and 9.1.

CNA Affected

[
  {
    "product": "GMS",
    "vendor": "SonicWall",
    "versions": [
      {
        "status": "affected",
        "version": "GMS 8.4"
      },
      {
        "status": "affected",
        "version": "GMS 8.5"
      },
      {
        "status": "affected",
        "version": "GMS 8.6"
      },
      {
        "status": "affected",
        "version": "GMS 8.7"
      },
      {
        "status": "affected",
        "version": "GMS 9.0"
      },
      {
        "status": "affected",
        "version": "GMS 9.1"
      }
    ]
  }
]

References

psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0011