Sonicwall

Global Management System

34 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2013-1359

Exploit
  • EPSS 89.13%
  • Published 11.02.2020 17:15:11
  • Last modified 21.11.2024 01:49:25

An Authentication Bypass Vulnerability exists in DELL SonicWALL Analyzer 7.0, Global Management System (GMS) 4.1, 5.0, 5.1, 6.0, and 7.0; Universal Management Appliance (UMA) 5.1, 6.0, and 7.0 and ViewPoint 4.1, 5.0, 5.1, and 6.0 via the skipSessionC...

10

CVE-2013-1360

Exploit
  • EPSS 57.72%
  • Published 11.02.2020 16:15:12
  • Last modified 21.11.2024 01:49:25

An Authentication Bypass vulnerability exists in DELL SonicWALL Global Management System (GMS) 4.1, 5.0, 5.1, 6.0, and 7.0, Analyzer 7.0, Universal Management Appliance (UMA) 5.1, 6.0, and 7.0 and ViewPoint 4.1, 5.0, and 6.0 via a crafted request to ...

9.8

CVE-2019-7478

  • EPSS 0.57%
  • Published 31.12.2019 00:15:13
  • Last modified 21.11.2024 04:48:15

A vulnerability in GMS allow unauthenticated user to SQL injection in Webservice module. This vulnerability affected GMS versions GMS 8.4, 8.5, 8.6, 8.7, 9.0 and 9.1.

8.1

CVE-2019-7476

  • EPSS 0.45%
  • Published 26.04.2019 21:29:00
  • Last modified 21.11.2024 04:48:15

A vulnerability in SonicWall Global Management System (GMS), allow a remote user to gain access to the appliance using existing SSH key. This vulnerability affects GMS versions 9.1, 9.0, 8.7, 8.6, 8.4, 8.3 and earlier.

9.8

CVE-2018-9866

Exploit
  • EPSS 11.74%
  • Published 03.08.2018 20:29:00
  • Last modified 05.05.2025 19:15:52

A vulnerability in lack of validation of user-supplied parameters pass to XML-RPC calls on SonicWall Global Management System (GMS) virtual appliance's, allow remote user to execute arbitrary code. This vulnerability affected GMS version 8.1 and earl...

5.5

CVE-2018-3639

Exploit
  • EPSS 44.99%
  • Published 22.05.2018 12:29:00
  • Last modified 21.11.2024 04:05:48

Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access vi...

5.4

CVE-2018-5691

Exploit
  • EPSS 0.36%
  • Published 14.01.2018 04:29:00
  • Last modified 21.11.2024 04:09:10

SonicWall Global Management System (GMS) 8.1 has XSS via the `newName` and `Name` values of the `/sgms/TreeControl` module.

10

CVE-2016-2397

  • EPSS 5.04%
  • Published 17.02.2016 15:59:07
  • Last modified 12.04.2025 10:46:40

The cliserver implementation in Dell SonicWALL GMS, Analyzer, and UMA EM5000 7.2, 8.0, and 8.1 before Hotfix 168056 allows remote attackers to deserialize and execute arbitrary Java code via crafted XML data.

9.9

CVE-2016-2396

  • EPSS 0.59%
  • Published 17.02.2016 15:59:06
  • Last modified 12.04.2025 10:46:40

The GMS ViewPoint (GMSVP) web application in Dell SonicWALL GMS, Analyzer, and UMA EM5000 7.2, 8.0, and 8.1 before Hotfix 168056 allows remote authenticated users to execute arbitrary commands via vectors related to configuration input.

9

CVE-2015-3990

  • EPSS 0.58%
  • Published 20.05.2015 18:59:05
  • Last modified 12.04.2025 10:46:40

The GMS ViewPoint (GMSVP) web application in Dell Sonicwall GMS, Analyzer, and UMA EM5000 before 7.2 SP4 allows remote authenticated users to execute arbitrary commands via vectors related to configuration.