10
CVE-2013-1360
- EPSS 57.72%
- Published 11.02.2020 16:15:12
- Last modified 21.11.2024 01:49:25
- Source cve@mitre.org
- Teams watchlist Login
- Open Login
An Authentication Bypass vulnerability exists in DELL SonicWALL Global Management System (GMS) 4.1, 5.0, 5.1, 6.0, and 7.0, Analyzer 7.0, Universal Management Appliance (UMA) 5.1, 6.0, and 7.0 and ViewPoint 4.1, 5.0, and 6.0 via a crafted request to the SGMS interface, which could let a remote malicious user obtain administrative access.
Data is provided by the National Vulnerability Database (NVD)
Sonicwall ≫ Global Management System Version4.1
Sonicwall ≫ Global Management System Version5.0
Sonicwall ≫ Global Management System Version5.1
Sonicwall ≫ Global Management System Version6.0
Sonicwall ≫ Global Management System Version7.0
Sonicwall ≫ Universal Management Appliance Version5.1
Sonicwall ≫ Universal Management Appliance Version6.0
Sonicwall ≫ Universal Management Appliance Version7.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 57.72% | 0.979 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 9.8 | 3.9 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|
CWE-287 Improper Authentication
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.