8 matches found
VulnCheck KEV: CVE-2021-20039
Improper neutralization of special elements in the SMA100 management interface '/cgi-bin/viewcert' POST http method allows a remote authenticated attacker to inject arbitrary commands as a 'nobody' user. This vulnerability affected SMA 200, 210, 400, 410 and 500v appliances...
CVE-2021-20039
Improper neutralization of special elements in the SMA100 management interface '/cgi-bin/viewcert' POST http method allows a remote authenticated attacker to inject arbitrary commands as a 'nobody' user. This vulnerability affected SMA 200, 210, 400, 410 and 500v appliances...
CVE-2021-20039
Improper neutralization of special elements in the SMA100 management interface '/cgi-bin/viewcert' POST http method allows a remote authenticated attacker to inject arbitrary commands as a 'nobody' user. This vulnerability affected SMA 200, 210, 400, 410 and 500v appliances...
Sonicwall SMA100 操作系统操作系统命令注入漏洞
The Sonicwall SMA100 is a secure access gateway device from Sonicwall, Inc. An operating system command injection vulnerability exists in the SonicWall SMA100 management interface, which stems from an improper neutralization of special elements in the POST http method of /cgi-bin/viewcert. The...
Dell SonicWALL Secure Remote Access viewcert RCE
Remote command execution vulnerability in Dell SonicWALL Secure Remote Access /cgi-bin/viewcert Vulnerability Type: Remote Command Execution For the exploit source code contact DSquare Security sales team...
Dell SonicWall Secure Remote Access Server Command Injection Vulnerability (CNVD-2017-02473)
Dell SonicWall Secure Remote Access is a SonicWALL Secure Remote Access Series appliance within the Dell SonicWall Secure Mobile Access solution. An input validation vulnerability in the viewcert CGI /cgi-bin/viewcert component of the web management interface of Dell SonicWall Secure Remote Acces...
CVE-2016-9684
The SonicWall Secure Remote Access server version 8.1.0.2-14sv is vulnerable to a Remote Command Injection vulnerability in its web administrative interface. This vulnerability occurs in the 'viewcert' CGI /cgi-bin/viewcert component responsible for processing SSL certificate information. The CGI...
CVE-2016-9684
Dell SonicWALL Secure Remote Access (SRA) server, version 8.1.0.2-14sv, is vulnerable to a remote command injection in the web admin CGI at /cgi-bin/viewcert. The CGI does not properly escape the CERT input before a system() call, enabling an attacker to execute arbitrary shell commands and gain ...