Описание
The GMS ViewPoint (GMSVP) web application in Dell SonicWALL GMS, Analyzer, and UMA EM5000 7.2, 8.0, and 8.1 before Hotfix 168056 allows remote authenticated users to execute arbitrary commands via vectors related to configuration input.
Ссылки
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:sonicwall:analyzer:7.2:*:*:*:*:*:*:*
cpe:2.3:a:sonicwall:analyzer:8.0:*:*:*:*:*:*:*
cpe:2.3:a:sonicwall:analyzer:8.1:*:*:*:*:*:*:*
cpe:2.3:a:sonicwall:global_management_system:7.2:*:*:*:*:*:*:*
cpe:2.3:a:sonicwall:global_management_system:8.0:*:*:*:*:*:*:*
cpe:2.3:a:sonicwall:global_management_system:8.1:*:*:*:*:*:*:*
Конфигурация 2
Одновременно
Одно из
cpe:2.3:o:sonicwall:uma_em5000_firmware:7.2:*:*:*:*:*:*:*
cpe:2.3:o:sonicwall:uma_em5000_firmware:8.0:*:*:*:*:*:*:*
cpe:2.3:o:sonicwall:uma_em5000_firmware:8.1:*:*:*:*:*:*:*
cpe:2.3:h:sonicwall:uma_em5000:-:*:*:*:*:*:*:*
EPSS
Процентиль: 69%
0.00586
Низкий
9.9 Critical
CVSS3
9 Critical
CVSS2
Дефекты
CWE-77
Связанные уязвимости
CVSS3: 9.9
github
больше 3 лет назад
The GMS ViewPoint (GMSVP) web application in Dell SonicWALL GMS, Analyzer, and UMA EM5000 7.2, 8.0, and 8.1 before Hotfix 168056 allows remote authenticated users to execute arbitrary commands via vectors related to configuration input.
EPSS
Процентиль: 69%
0.00586
Низкий
9.9 Critical
CVSS3
9 Critical
CVSS2
Дефекты
CWE-77