Lucene search
PRIOn knowledge basePRION:CVE-2023-34133HistoryJul 13, 2023 - 3:15 a.m.
Sql injection
2023-07-1303:15:00
PRIOn knowledge base
www.prio-n.com
11
improper neutralization
sql command
unauthenticated attacker
sensitive information
application database
gms
analytics
vulnerability
sonicwall
Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in SonicWall GMS and Analytics allows an unauthenticated attacker to extract sensitive information from the application database. This issue affects GMS: 9.3.2-SP1 and earlier versions; Analytics: 2.5.0.4-R7 and earlier versions.
| CPE | Name | Operator | Version |
|---|---|---|---|
| analytics | eq | <= 2.5.0.4-r7 | |
| global_management_system | lt | 9.3.2 | |
| global_management_system | eq | 9.3.2 sp1 | |
| global_management_system | eq | 9.3.2 |
Related
cvelist
cvelist
CVE-2023-34133
2023-07-13 02:28:35
nvd
nvd
CVE-2023-34133
2023-07-13 03:15:09
cve
cve
CVE-2023-34133
2023-07-13 03:15:09
metasploit
metasploit
Sonicwall
2023-08-21 15:53:07
packetstorm
packetstorm
Sonicwall GMS 9.9.9320 Remote Code Execution
2023-09-08 00:00:00
rapid7blog
rapid7blog
SonicWall Recommends Urgent Patching for GMS and Analytics CVEs
2023-07-13 14:56:13
thn
thn
attackerkb
attackerkb
CVE-2023-34127
2023-08-21 00:00:00