CVE-2013-1360

Опубликовано: 11 фев. 2020

Источник: nvd

CVSS3: 9.8

CVSS2: 10

EPSS Средний

Описание

An Authentication Bypass vulnerability exists in DELL SonicWALL Global Management System (GMS) 4.1, 5.0, 5.1, 6.0, and 7.0, Analyzer 7.0, Universal Management Appliance (UMA) 5.1, 6.0, and 7.0 and ViewPoint 4.1, 5.0, and 6.0 via a crafted request to the SGMS interface, which could let a remote malicious user obtain administrative access.

Ссылки

http://archives.neohapsis.com/archives/bugtraq/2013-01/0075.html
Broken Link
http://www.exploit-db.com/exploits/24203
Exploit
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/57446
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1028007
Third Party Advisory
VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/81366
Third Party Advisory
VDB Entry
https://packetstormsecurity.com/files/cve/CVE-2013-1360
Third Party Advisory
VDB Entry
http://archives.neohapsis.com/archives/bugtraq/2013-01/0075.html
Broken Link
http://www.exploit-db.com/exploits/24203
Exploit
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/57446
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1028007
Third Party Advisory
VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/81366
Third Party Advisory
VDB Entry
https://packetstormsecurity.com/files/cve/CVE-2013-1360
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:sonicwall:analyzer:7.0:*:*:*:*:*:*:*

cpe:2.3:a:sonicwall:global_management_system:4.1:*:*:*:*:*:*:*

cpe:2.3:a:sonicwall:global_management_system:5.0:*:*:*:*:*:*:*

cpe:2.3:a:sonicwall:global_management_system:5.1:*:*:*:*:*:*:*

cpe:2.3:a:sonicwall:global_management_system:6.0:*:*:*:*:*:*:*

cpe:2.3:a:sonicwall:global_management_system:7.0:*:*:*:*:*:*:*

cpe:2.3:a:sonicwall:universal_management_appliance:5.1:*:*:*:*:*:*:*

cpe:2.3:a:sonicwall:universal_management_appliance:6.0:*:*:*:*:*:*:*

cpe:2.3:a:sonicwall:universal_management_appliance:7.0:*:*:*:*:*:*:*

cpe:2.3:a:sonicwall:viewpoint:4.1:*:*:*:*:*:*:*

cpe:2.3:a:sonicwall:viewpoint:5.0:*:*:*:*:*:*:*

cpe:2.3:a:sonicwall:viewpoint:6.0:*:*:*:*:*:*:*

EPSS

Процентиль: 98%

0.57719

Средний

9.8 Critical

CVSS3

10 Critical

CVSS2

Дефекты

CWE-287

Связанные уязвимости

GHSA-2g63-6gwh-xmr7

github

больше 3 лет назад