Lucene search
SonicwallCVELIST:CVE-2023-34137HistoryJul 13, 2023 - 2:43 a.m.
CVE-2023-34137
2023-07-1302:43:08
CWE-305
sonicwall
www.cve.org
1
sonicwall
gms
analytics
cas web services
authentication bypass
vulnerability
SonicWall GMS and Analytics CAS Web Services application use static values for authentication without proper checks leading to authentication bypass vulnerability. This issue affects GMS: 9.3.2-SP1 and earlier versions; Analytics: 2.5.0.4-R7 and earlier versions.
CNA Affected
[
{
"defaultStatus": "unknown",
"product": "GMS",
"vendor": "SonicWall",
"versions": [
{
"status": "affected",
"version": "9.3.2-SP1 and earlier versions"
}
]
},
{
"defaultStatus": "unknown",
"product": "Analytics",
"vendor": "SonicWall",
"versions": [
{
"status": "affected",
"version": "2.5.0.4-R7 and earlier versions"
}
]
}
]Related
nvd
nvd
CVE-2023-34137
2023-07-13 03:15:09
cve
cve
CVE-2023-34137
2023-07-13 03:15:09
prion
prion
Authentication flaw
2023-07-13 03:15:00
rapid7blog
rapid7blog
SonicWall Recommends Urgent Patching for GMS and Analytics CVEs
2023-07-13 14:56:13
thn
thn
attackerkb
attackerkb
CVE-2023-34127
2023-08-21 00:00:00