Описание
Dell SonicWall Scrutinizer 11.0.1 allows remote authenticated users to change user passwords via the user ID in the savePrefs parameter in a change password request to cgi-bin/admin.cgi.
Dell SonicWall Scrutinizer 11.0.1 allows remote authenticated users to change user passwords via the user ID in the savePrefs parameter in a change password request to cgi-bin/admin.cgi.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2014-4976
- https://exchange.xforce.ibmcloud.com/vulnerabilities/94438
- https://gist.github.com/brandonprry/36b4b8df1cde279a9305
- https://gist.github.com/brandonprry/76741d9a0d4f518fe297
- http://packetstormsecurity.com/files/127429/Dell-Sonicwall-Scrutinizer-11.01-Code-Execution-SQL-Injection.html
- http://seclists.org/fulldisclosure/2014/Jul/44
- http://www.securityfocus.com/bid/68495
EPSS
Процентиль: 87%
0.03128
Низкий
CVE ID
Связанные уязвимости
nvd
больше 11 лет назад
Dell SonicWall Scrutinizer 11.0.1 allows remote authenticated users to change user passwords via the user ID in the savePrefs parameter in a change password request to cgi-bin/admin.cgi.
EPSS
Процентиль: 87%
0.03128
Низкий