Sonicwall

Global Management System

34 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2013-1359

Exploit
  • EPSS 89.13%
  • Veröffentlicht 11.02.2020 17:15:11
  • Zuletzt bearbeitet 21.11.2024 01:49:25

An Authentication Bypass Vulnerability exists in DELL SonicWALL Analyzer 7.0, Global Management System (GMS) 4.1, 5.0, 5.1, 6.0, and 7.0; Universal Management Appliance (UMA) 5.1, 6.0, and 7.0 and ViewPoint 4.1, 5.0, 5.1, and 6.0 via the skipSessionC...

10

CVE-2013-1360

Exploit
  • EPSS 57.72%
  • Veröffentlicht 11.02.2020 16:15:12
  • Zuletzt bearbeitet 21.11.2024 01:49:25

An Authentication Bypass vulnerability exists in DELL SonicWALL Global Management System (GMS) 4.1, 5.0, 5.1, 6.0, and 7.0, Analyzer 7.0, Universal Management Appliance (UMA) 5.1, 6.0, and 7.0 and ViewPoint 4.1, 5.0, and 6.0 via a crafted request to ...

9.8

CVE-2019-7478

  • EPSS 0.57%
  • Veröffentlicht 31.12.2019 00:15:13
  • Zuletzt bearbeitet 21.11.2024 04:48:15

A vulnerability in GMS allow unauthenticated user to SQL injection in Webservice module. This vulnerability affected GMS versions GMS 8.4, 8.5, 8.6, 8.7, 9.0 and 9.1.

8.1

CVE-2019-7476

  • EPSS 0.45%
  • Veröffentlicht 26.04.2019 21:29:00
  • Zuletzt bearbeitet 21.11.2024 04:48:15

A vulnerability in SonicWall Global Management System (GMS), allow a remote user to gain access to the appliance using existing SSH key. This vulnerability affects GMS versions 9.1, 9.0, 8.7, 8.6, 8.4, 8.3 and earlier.

9.8

CVE-2018-9866

Exploit
  • EPSS 11.74%
  • Veröffentlicht 03.08.2018 20:29:00
  • Zuletzt bearbeitet 05.05.2025 19:15:52

A vulnerability in lack of validation of user-supplied parameters pass to XML-RPC calls on SonicWall Global Management System (GMS) virtual appliance's, allow remote user to execute arbitrary code. This vulnerability affected GMS version 8.1 and earl...

5.5

CVE-2018-3639

Exploit
  • EPSS 44.99%
  • Veröffentlicht 22.05.2018 12:29:00
  • Zuletzt bearbeitet 21.11.2024 04:05:48

Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access vi...

5.4

CVE-2018-5691

Exploit
  • EPSS 0.36%
  • Veröffentlicht 14.01.2018 04:29:00
  • Zuletzt bearbeitet 21.11.2024 04:09:10

SonicWall Global Management System (GMS) 8.1 has XSS via the `newName` and `Name` values of the `/sgms/TreeControl` module.

10

CVE-2016-2397

  • EPSS 5.04%
  • Veröffentlicht 17.02.2016 15:59:07
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The cliserver implementation in Dell SonicWALL GMS, Analyzer, and UMA EM5000 7.2, 8.0, and 8.1 before Hotfix 168056 allows remote attackers to deserialize and execute arbitrary Java code via crafted XML data.

9.9

CVE-2016-2396

  • EPSS 0.59%
  • Veröffentlicht 17.02.2016 15:59:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The GMS ViewPoint (GMSVP) web application in Dell SonicWALL GMS, Analyzer, and UMA EM5000 7.2, 8.0, and 8.1 before Hotfix 168056 allows remote authenticated users to execute arbitrary commands via vectors related to configuration input.

9

CVE-2015-3990

  • EPSS 0.58%
  • Veröffentlicht 20.05.2015 18:59:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The GMS ViewPoint (GMSVP) web application in Dell Sonicwall GMS, Analyzer, and UMA EM5000 before 7.2 SP4 allows remote authenticated users to execute arbitrary commands via vectors related to configuration.