Lucene search
HistoryOct 17, 2023 - 11:15 p.m.
CVE-2023-41713
sonicos
hard-coded password
vulnerability
cve-2023-41713
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
7.9
Confidence
High
EPSS
0.001
Percentile
40.6%
SonicOS Use of Hard-coded Password vulnerability in the ‘dynHandleBuyToolbar’ demo function.
Affected configurations
Node
sonicwallsonicosRange<7.0.1-5145
sonicwallnsa2700Match-
ORsonicwallnsa3700Match-
ORsonicwallnsa4700Match-
ORsonicwallnsa5700Match-
ORsonicwallnsa6700Match-
ORsonicwallnssp10700Match-
ORsonicwallnssp11700Match-
ORsonicwallnssp13700Match-
ORsonicwallnssp15700Match-
ORsonicwallnsv10Match-
ORsonicwallnsv100Match-
ORsonicwallnsv1600Match-
ORsonicwallnsv200Match-
ORsonicwallnsv25Match-
ORsonicwallnsv270Match-
ORsonicwallnsv300Match-
ORsonicwallnsv400Match-
ORsonicwallnsv470Match-
ORsonicwallnsv50Match-
ORsonicwallnsv800Match-
ORsonicwallnsv870Match-
ORsonicwalltz270Match-
ORsonicwalltz270wMatch-
ORsonicwalltz370Match-
ORsonicwalltz370wMatch-
ORsonicwalltz470Match-
ORsonicwalltz470wMatch-
ORsonicwalltz570Match-
ORsonicwalltz570pMatch-
ORsonicwalltz570wMatch-
ORsonicwalltz670Match-
Node
sonicwallsonicosRange<6.5.4.4-44v-21-2340
sonicwallnsv10Match-
ORsonicwallnsv100Match-
ORsonicwallnsv1600Match-
ORsonicwallnsv200Match-
ORsonicwallnsv25Match-
ORsonicwallnsv270Match-
ORsonicwallnsv300Match-
ORsonicwallnsv400Match-
ORsonicwallnsv470Match-
ORsonicwallnsv50Match-
ORsonicwallnsv800Match-
ORsonicwallnsv870Match-
Node
sonicwallsonicosRange<6.5.4.13-105n
sonicwallnsa_2600Match-
ORsonicwallnsa_2650Match-
ORsonicwallnsa_3600Match-
ORsonicwallnsa_3650Match-
ORsonicwallnsa_4600Match-
ORsonicwallnsa_4650Match-
ORsonicwallnsa_5600Match-
ORsonicwallnsa_5650Match-
ORsonicwallnsa_6600Match-
ORsonicwallnsa_6650Match-
ORsonicwallsm_9200Match-
ORsonicwallsm_9250Match-
ORsonicwallsm_9400Match-
ORsonicwallsm_9450Match-
ORsonicwallsm_9600Match-
ORsonicwallsm_9650Match-
ORsonicwallsoho_250Match-
ORsonicwallsoho_250wMatch-
ORsonicwallsohowMatch-
ORsonicwalltz_300Match-
ORsonicwalltz_300pMatch-
ORsonicwalltz_300wMatch-
ORsonicwalltz_350Match-
ORsonicwalltz_400Match-
ORsonicwalltz_400wMatch-
ORsonicwalltz_500Match-
ORsonicwalltz_500wMatch-
ORsonicwalltz_600Match-
ORsonicwalltz_600pMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| sonicwall | sonicos | * | cpe:2.3:o:sonicwall:sonicos:*:*:*:*:*:*:*:* |
| sonicwall | nsa2700 | - | cpe:2.3:h:sonicwall:nsa2700:-:*:*:*:*:*:*:* |
| sonicwall | nsa3700 | - | cpe:2.3:h:sonicwall:nsa3700:-:*:*:*:*:*:*:* |
| sonicwall | nsa4700 | - | cpe:2.3:h:sonicwall:nsa4700:-:*:*:*:*:*:*:* |
| sonicwall | nsa5700 | - | cpe:2.3:h:sonicwall:nsa5700:-:*:*:*:*:*:*:* |
| sonicwall | nsa6700 | - | cpe:2.3:h:sonicwall:nsa6700:-:*:*:*:*:*:*:* |
| sonicwall | nssp10700 | - | cpe:2.3:h:sonicwall:nssp10700:-:*:*:*:*:*:*:* |
| sonicwall | nssp11700 | - | cpe:2.3:h:sonicwall:nssp11700:-:*:*:*:*:*:*:* |
| sonicwall | nssp13700 | - | cpe:2.3:h:sonicwall:nssp13700:-:*:*:*:*:*:*:* |
| sonicwall | nssp15700 | - | cpe:2.3:h:sonicwall:nssp15700:-:*:*:*:*:*:*:* |
Related
cve
cve
CVE-2023-41713
2023-10-17 23:15:12
vulnrichment
vulnrichment
CVE-2023-41713
2023-10-17 22:28:50
prion
prion
Hardcoded credentials
2023-10-17 23:15:00
cvelist
cvelist
CVE-2023-41713
2023-10-17 22:28:50
nessus
nessus
SonicWall SonicOS Multiple Vulnerabilities (SNWLID-2023-0012)
2024-02-05 00:00:00
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
AI Score
7.9
Confidence
High
EPSS
0.001
Percentile
40.6%
Related for NVD:CVE-2023-41713