Scrutinizer Security Vulnerabilities and Issues — Scrutinizer CVE List

Lucene search

SonicwallScrutinizer

2 matches found

CVE•added 2012/07/31 10:45 a.m.•131 views

CVE-2012-2626

cgi-bin/admin.cgi in the web console in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) before 9.5.0 does not require token authentication, which allows remote attackers to add administrative accounts via a userprefs action.

5CVSS6.6AI score0.75978EPSS

CVE•added 2014/07/16 2:19 p.m.•37 views

CVE-2014-4976

Dell SonicWall Scrutinizer 11.0.1 allows remote authenticated users to change user passwords via the user ID in the savePrefs parameter in a change password request to cgi-bin/admin.cgi.

5.5CVSS6.6AI score0.03128EPSS