CVE-2015-3990

EUVD-2015-4020
The GMS ViewPoint (GMSVP) web application in Dell Sonicwall GMS, Analyzer, and UMA EM5000 before 7.2 SP4 allows remote authenticated users to execute arbitrary commands via vectors related to configuration.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:S/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 68%
Affected Products (NVD)
VendorProductVersion
sonicwalluma_em5000_firmware
𝑥
≤ 7.2
sonicwallanalyzer
𝑥
≤ 7.2
sonicwallglobal_management_system
𝑥
≤ 7.2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/74756
http://www.securitytracker.com/id/1032373
http://www.zerodayinitiative.com/advisories/ZDI-15-231/
https://support.software.dell.com/product-notification/152178
http://www.securityfocus.com/bid/74756
http://www.securitytracker.com/id/1032373
http://www.zerodayinitiative.com/advisories/ZDI-15-231/
https://support.software.dell.com/product-notification/152178