CVE-2013-1360
Severity CVSS v4.0:
Pending analysis
Type:
CWE-287
Authentication Issues
Publication date:
11/02/2020
Last modified:
13/02/2020
Description
An Authentication Bypass vulnerability exists in DELL SonicWALL Global Management System (GMS) 4.1, 5.0, 5.1, 6.0, and 7.0, Analyzer 7.0, Universal Management Appliance (UMA) 5.1, 6.0, and 7.0 and ViewPoint 4.1, 5.0, and 6.0 via a crafted request to the SGMS interface, which could let a remote malicious user obtain administrative access.
Impact
Base Score 3.x
9.80
Severity 3.x
CRITICAL
Base Score 2.0
10.00
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:sonicwall:analyzer:7.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:sonicwall:global_management_system:4.1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:sonicwall:global_management_system:5.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:sonicwall:global_management_system:5.1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:sonicwall:global_management_system:6.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:sonicwall:global_management_system:7.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:sonicwall:universal_management_appliance:5.1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:sonicwall:universal_management_appliance:6.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:sonicwall:universal_management_appliance:7.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:sonicwall:viewpoint:4.1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:sonicwall:viewpoint:5.0:*:*:*:*:*:*:* | ||
| cpe:2.3:a:sonicwall:viewpoint:6.0:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://archives.neohapsis.com/archives/bugtraq/2013-01/0075.html
- http://www.exploit-db.com/exploits/24203
- http://www.securityfocus.com/bid/57446
- http://www.securitytracker.com/id/1028007
- https://exchange.xforce.ibmcloud.com/vulnerabilities/81366
- https://packetstormsecurity.com/files/cve/CVE-2013-1360