CVE-2013-1360

EUVD-2013-1399
An Authentication Bypass vulnerability exists in DELL SonicWALL Global Management System (GMS) 4.1, 5.0, 5.1, 6.0, and 7.0, Analyzer 7.0, Universal Management Appliance (UMA) 5.1, 6.0, and 7.0 and ViewPoint 4.1, 5.0, and 6.0 via a crafted request to the SGMS interface, which could let a remote malicious user obtain administrative access.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 98%
Affected Products (NVD)
VendorProductVersion
sonicwallanalyzer
7.0
sonicwallglobal_management_system
4.1
sonicwallglobal_management_system
5.0
sonicwallglobal_management_system
5.1
sonicwallglobal_management_system
6.0
sonicwallglobal_management_system
7.0
sonicwalluniversal_management_appliance
5.1
sonicwalluniversal_management_appliance
6.0
sonicwalluniversal_management_appliance
7.0
sonicwallviewpoint
4.1
sonicwallviewpoint
5.0
sonicwallviewpoint
6.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://archives.neohapsis.com/archives/bugtraq/2013-01/0075.html
http://www.exploit-db.com/exploits/24203
http://www.securityfocus.com/bid/57446
http://www.securitytracker.com/id/1028007
https://exchange.xforce.ibmcloud.com/vulnerabilities/81366
https://packetstormsecurity.com/files/cve/CVE-2013-1360
http://archives.neohapsis.com/archives/bugtraq/2013-01/0075.html
http://www.exploit-db.com/exploits/24203
http://www.securityfocus.com/bid/57446
http://www.securitytracker.com/id/1028007
https://exchange.xforce.ibmcloud.com/vulnerabilities/81366
https://packetstormsecurity.com/files/cve/CVE-2013-1360