Lucene search
SonicwallCVELIST:CVE-2023-34124HistoryJul 13, 2023 - 12:14 a.m.
CVE-2023-34124
2023-07-1300:14:16
CWE-305
sonicwall
www.cve.org
4
sonicwall
gms
analytics
authentication bypass
cve-2023-34124
The authentication mechanism in SonicWall GMS and Analytics Web Services had insufficient checks, allowing authentication bypass. This issue affects GMS: 9.3.2-SP1 and earlier versions; Analytics: 2.5.0.4-R7 and earlier versions.
CNA Affected
[
{
"defaultStatus": "unknown",
"product": "GMS",
"vendor": "SonicWall",
"versions": [
{
"status": "affected",
"version": "9.3.2-SP1 and earlier versions"
}
]
},
{
"defaultStatus": "unknown",
"product": "Analytics",
"vendor": "SonicWall",
"versions": [
{
"status": "affected",
"version": "2.5.0.4-R7 and earlier versions"
}
]
}
]Related
cve
cve
CVE-2023-34124
2023-07-13 01:15:08
nvd
nvd
CVE-2023-34124
2023-07-13 01:15:08
prion
prion
Authentication flaw
2023-07-13 01:15:00
zdi
zdi
nuclei
nuclei
SonicWall GMS and Analytics Web Services - Shell Injection
2023-08-28 13:26:29
metasploit
metasploit
Sonicwall
2023-08-21 15:53:07
packetstorm
packetstorm
Sonicwall GMS 9.9.9320 Remote Code Execution
2023-09-08 00:00:00
rapid7blog
rapid7blog
SonicWall Recommends Urgent Patching for GMS and Analytics CVEs
2023-07-13 14:56:13
Metasploit Weekly Wrap-Up
2023-09-15 18:54:45
thn
thn
attackerkb
attackerkb
CVE-2023-34127
2023-08-21 00:00:00