Lucene search
K

8 matches found

Metasploit
Metasploit
added 2023/09/08 7:52 p.m.507 views

Sonicwall

This module exploits a series of vulnerabilities - including auth bypass, SQL injection, and shell injection - to obtain remote code execution on SonicWall GMS versions use exploit/multi/http/sonicwallshellinjectioncve202334124 msf exploitsonicwallshellinjectioncve202334124 show targets...

9.8CVSS9.4AI score0.78134EPSS
Exploits2
Packet Storm
Packet Storm
added 2023/09/08 12:0 a.m.625 views

Sonicwall GMS 9.9.9320 Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Sonicwall', 'Description' = %q This module exploits a series of vulnerabilities - including auth bypass, SQL injection, and shell injection - to...

9.8CVSS7.1AI score0.86469EPSS
Exploits2
Circl
Circl
added 2023/07/13 3:9 p.m.22 views

CVE-2023-34133

creationtimestamp| type| source ---|---|--- 2023-07-13 15:09:07+00:00| seen| https://t.me/truesecator/4611 2023-09-08 10:11:37+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/sonicwallshellinjectioncve202334124.rb 2024-02-22 15:07:29+00:00| seen...

7.5CVSS7.1AI score0.78134EPSS
In wildExploits2References6
The Hacker News
The Hacker News
added 2023/07/13 5:16 a.m.72 views

New Vulnerabilities Disclosed in SonicWall and Fortinet Network Security Products

SonicWall on Wednesday urged customers of Global Management System GMS firewall management and Analytics network reporting engine software to apply the latest fixes to secure against a set of 15 security flaws that could be exploited by a threat actor to circumvent authentication and access...

8.8AI score0.78134EPSS
Exploits2
NVD
NVD
added 2023/07/13 3:15 a.m.40 views

CVE-2023-34133

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in SonicWall GMS and Analytics allows an unauthenticated attacker to extract sensitive information from the application database. This issue affects GMS: 9.3.2-SP1 and earlier versions; Analytics:...

7.5CVSS0.78134EPSS
Exploits2References3
Vulnrichment
Vulnrichment
added 2023/07/13 2:28 a.m.7 views

CVE-2023-34133

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in SonicWall GMS and Analytics allows an unauthenticated attacker to extract sensitive information from the application database. This issue affects GMS: 9.3.2-SP1 and earlier versions; Analytics:...

7.7AI score0.78134EPSS
Exploits2References3
Cvelist
Cvelist
added 2023/07/13 2:28 a.m.42 views

CVE-2023-34133

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in SonicWall GMS and Analytics allows an unauthenticated attacker to extract sensitive information from the application database. This issue affects GMS: 9.3.2-SP1 and earlier versions; Analytics:...

9.1AI score0.78134EPSS
Exploits2References3
CVE
CVE
added 2023/07/13 2:28 a.m.217 views

CVE-2023-34133

CVE-2023-34133 is an SQL Injection affecting SonicWall GMS and Analytics (GMS 9.3.2-SP1 and earlier; Analytics 2.5.0.4-R7 and earlier). An unauthenticated attacker can extract data from the application database. Public materials reference SQLi in SonicWall GMS/Analytics and mention updated fixes;...

7.5CVSS8.7AI score0.78134EPSS
In wildExploits2References3Affected Software2
Rows per page
Query Builder