Vulnerability Details CVE-2013-1360
An Authentication Bypass vulnerability exists in DELL SonicWALL Global Management System (GMS) 4.1, 5.0, 5.1, 6.0, and 7.0, Analyzer 7.0, Universal Management Appliance (UMA) 5.1, 6.0, and 7.0 and ViewPoint 4.1, 5.0, and 6.0 via a crafted request to the SGMS interface, which could let a remote malicious user obtain administrative access.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.577
EPSS Ranking 98.0%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
References
- http://archives.neohapsis.com/archives/bugtraq/2013-01/0075.html
- http://www.exploit-db.com/exploits/24203
- http://www.securityfocus.com/bid/57446
- http://www.securitytracker.com/id/1028007
- https://exchange.xforce.ibmcloud.com/vulnerabilities/81366
- https://packetstormsecurity.com/files/cve/CVE-2013-1360
- http://archives.neohapsis.com/archives/bugtraq/2013-01/0075.html
- http://www.exploit-db.com/exploits/24203
- http://www.securityfocus.com/bid/57446
- http://www.securitytracker.com/id/1028007
- https://exchange.xforce.ibmcloud.com/vulnerabilities/81366
- https://packetstormsecurity.com/files/cve/CVE-2013-1360
Products affected by CVE-2013-1360
-
cpe:2.3:a:sonicwall:analyzer:7.0
-
cpe:2.3:a:sonicwall:global_management_system:4.1
-
cpe:2.3:a:sonicwall:global_management_system:5.0
-
cpe:2.3:a:sonicwall:global_management_system:5.1
-
cpe:2.3:a:sonicwall:global_management_system:6.0
-
cpe:2.3:a:sonicwall:global_management_system:7.0
-
cpe:2.3:a:sonicwall:universal_management_appliance:5.1
-
cpe:2.3:a:sonicwall:universal_management_appliance:6.0
-
cpe:2.3:a:sonicwall:universal_management_appliance:7.0
-
cpe:2.3:a:sonicwall:viewpoint:4.1
-
cpe:2.3:a:sonicwall:viewpoint:5.0
-
cpe:2.3:a:sonicwall:viewpoint:6.0