Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sonicwall analyzer vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-5024
Cross-site scripting (XSS) vulnerability in sgms/panelManager in Dell SonicWALL GMS, Analyzer, and UMA prior to 7.2 SP1 allows remote malicious users to inject arbitrary web script or HTML via the node_id parameter.
Sonicwall Global Management System
Sonicwall Analyzer
Sonicwall Uma Em5000 -
NA
CVE-2014-0332
Cross-site scripting (XSS) vulnerability in mainPage in Dell SonicWALL GMS prior to 7.1 SP2, SonicWALL Analyzer prior to 7.1 SP2, and SonicWALL UMA E5000 prior to 7.1 SP2 might allow remote malicious users to inject arbitrary web script or HTML via the node_id parameter in a Scre...
Sonicwall Global Management System 7.1
Sonicwall Global Management System 7.0
Sonicwall Analyzer 7.1
Sonicwall Analyzer 7.0
Sonicwall Global Management System 7.0
Sonicwall Global Management System 7.1
NA
CVE-2013-7025
Multiple cross-site scripting (XSS) vulnerabilities in ematStaticAlertTypes.jsp in the Alert Settings section in Dell SonicWALL Global Management System (GMS), Analyzer, and UMA EM5000 7.1 SP1 before Hotfix 134235 allow remote authenticated users to inject arbitrary web script or...
Sonicwall Global Management System 7.1
Sonicwall Analyzer 7.1
Sonicwall Global Management System 7.0
Sonicwall Analyzer 7.0
Sonicwall Uma E5000 Firmware 7.0
Sonicwall Uma E5000 Firmware 7.1
1 EDB exploit
NA
CVE-2012-2626
cgi-bin/admin.cgi in the web console in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) prior to 9.5.0 does not require token authentication, which allows remote malicious users to add administrative accounts via a userprefs action.
Sonicwall Scrutinizer
1 EDB exploit
NA
CVE-2012-2627
d4d/uploader.php in the web console in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) prior to 9.5.0 allows remote malicious users to create or overwrite arbitrary files in %PROGRAMFILES%\Scrutinizer\snmp\mibs\ via a multipart/form-data POST request.
Sonicwall Scrutinizer
1 EDB exploit
NA
CVE-2012-3848
Multiple cross-site scripting (XSS) vulnerabilities in the web console in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) prior to 9.5.0 allow remote malicious users to inject arbitrary web script or HTML via (1) the query string to d4d/exporters.php, (2) the HTTP Referer hea...
Sonicwall Scrutinizer
1 EDB exploit
NA
CVE-2012-3951
The MySQL component in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) 9.0.1.19899 and previous versions has a default password of admin for the (1) scrutinizer and (2) scrutremote accounts, which allows remote malicious users to execute arbitrary SQL commands via a TCP sessi...
Sonicwall Scrutinizer
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2