Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2013-1359

Опубликовано: 11 фев. 2020
Источник: nvd
CVSS3: 9.8
CVSS2: 10
EPSS Высокий

Описание

An Authentication Bypass Vulnerability exists in DELL SonicWALL Analyzer 7.0, Global Management System (GMS) 4.1, 5.0, 5.1, 6.0, and 7.0; Universal Management Appliance (UMA) 5.1, 6.0, and 7.0 and ViewPoint 4.1, 5.0, 5.1, and 6.0 via the skipSessionCheck parameter to the UMA interface (/appliance/), which could let a remote malicious user obtain access to the root account.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:sonicwall:analyzer:7.0:*:*:*:*:*:*:*
cpe:2.3:a:sonicwall:global_management_system:4.1:*:*:*:*:*:*:*
cpe:2.3:a:sonicwall:global_management_system:5.0:*:*:*:*:*:*:*
cpe:2.3:a:sonicwall:global_management_system:5.1:*:*:*:*:*:*:*
cpe:2.3:a:sonicwall:global_management_system:6.0:*:*:*:*:*:*:*
cpe:2.3:a:sonicwall:global_management_system:7.0:*:*:*:*:*:*:*
cpe:2.3:a:sonicwall:universal_management_appliance:5.1:*:*:*:*:*:*:*
cpe:2.3:a:sonicwall:universal_management_appliance:6.0:*:*:*:*:*:*:*
cpe:2.3:a:sonicwall:universal_management_appliance:7.0:*:*:*:*:*:*:*
cpe:2.3:a:sonicwall:viewpoint:4.1:*:*:*:*:*:*:*
cpe:2.3:a:sonicwall:viewpoint:5.0:*:*:*:*:*:*:*
cpe:2.3:a:sonicwall:viewpoint:6.0:*:*:*:*:*:*:*

EPSS

Процентиль: 100%
0.89468
Высокий

9.8 Critical

CVSS3

10 Critical

CVSS2

Дефекты

CWE-287

Связанные уязвимости

github логотип

GHSA-6qrj-83cw-546c

github
почти 4 года назад

An Authentication Bypass Vulnerability exists in DELL SonicWALL Analyzer 7.0, Global Management System (GMS) 4.1, 5.0, 5.1, 6.0, and 7.0; Universal Management Appliance (UMA) 5.1, 6.0, and 7.0 and ViewPoint 4.1, 5.0, 5.1, and 6.0 via the skipSessionCheck parameter to the UMA interface (/appliance/), which could let a remote malicious user obtain access to the root account.

EPSS

Процентиль: 100%
0.89468
Высокий

9.8 Critical

CVSS3

10 Critical

CVSS2

Дефекты

CWE-287