Lucene search
K

8 matches found

OSV
OSV
added 2023/07/13 1:15 a.m.5 views

CVE-2023-34127

Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in SonicWall GMS, SonicWall Analytics enables an authenticated attacker to execute arbitrary code with root privileges. This issue affects GMS: 9.3.2-SP1 and earlier versions; Analytics:...

8.8CVSS6.1AI score0.86733EPSS
Exploits1References3
NVD
NVD
added 2023/07/13 1:15 a.m.25 views

CVE-2023-34128

Tomcat application credentials are hardcoded in SonicWall GMS and Analytics configuration file. This issue affects GMS: 9.3.2-SP1 and earlier versions; Analytics: 2.5.0.4-R7 and earlier versions...

9.8CVSS0.00591EPSS
Exploits0References2
Prion
Prion
added 2023/07/13 1:15 a.m.31 views

Command injection

Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in SonicWall GMS, SonicWall Analytics enables an authenticated attacker to execute arbitrary code with root privileges. This issue affects GMS: 9.3.2-SP1 and earlier versions; Analytics:...

6.5CVSS9.5AI score0.86733EPSS
Exploits1References3Affected Software2
Cvelist
Cvelist
added 2023/07/13 12:44 a.m.23 views

CVE-2023-34126

Vulnerability in SonicWall GMS and Analytics allows an authenticated attacker to upload files on the underlying filesystem with root privileges. This issue affects GMS: 9.3.2-SP1 and earlier versions; Analytics: 2.5.0.4-R7 and earlier versions...

9.1AI score0.00629EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/07/13 12:21 a.m.26 views

CVE-2023-34125

Path Traversal vulnerability in GMS and Analytics allows an authenticated attacker to read arbitrary files from the underlying filesystem with root privileges. This issue affects GMS: 9.3.2-SP1 and earlier versions; Analytics: 2.5.0.4-R7 and earlier versions...

7.2AI score0.22708EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/07/12 12:0 a.m.4 views

PT-2023-3806 · Sonicwall · Sonicwall Gms +1

Name of the Vulnerable Software and Affected Versions: SonicWall GMS versions 9.3.2-SP1 and earlier SonicWall Analytics versions 2.5.0.4-R7 and earlier Description: The issue is related to the exposure of sensitive information to unauthorized actors in SonicWall GMS and Analytics, allowing an...

5.3CVSS5.4AI score0.00692EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2023/07/12 12:0 a.m.5 views

PT-2023-3802 · Sonicwall · Sonicwall Gms +1

Name of the Vulnerable Software and Affected Versions: SonicWall GMS versions 9.3.2-SP1 and earlier SonicWall Analytics versions 2.5.0.4-R7 and earlier Description: The issue is caused by incorrect restriction of directory path names with limited access. This allows an authenticated attacker to...

7.8CVSS6.2AI score0.22708EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2023/07/12 12:0 a.m.2 views

PT-2023-3807 · Sonicwall · Sonicwall Gms +1

Name of the Vulnerable Software and Affected Versions: SonicWall GMS versions 9.3.2-SP1 and earlier SonicWall Analytics versions 2.5.0.4-R7 and earlier Description: The authentication mechanism in SonicWall GMS and Analytics Web Services had insufficient checks, allowing authentication bypass. Th...

10CVSS9.7AI score0.40891EPSS
Exploits2References17
Rows per page
Query Builder