CVE-2013-1360
First published: Tue Feb 11 2020(Updated: )
An Authentication Bypass vulnerability exists in DELL SonicWALL Global Management System (GMS) 4.1, 5.0, 5.1, 6.0, and 7.0, Analyzer 7.0, Universal Management Appliance (UMA) 5.1, 6.0, and 7.0 and ViewPoint 4.1, 5.0, and 6.0 via a crafted request to the SGMS interface, which could let a remote malicious user obtain administrative access.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| SonicWALL Analyzer | =7.0 | |
| SonicWALL Global Management System | =4.1 | |
| SonicWALL Global Management System | =5.0 | |
| SonicWALL Global Management System | =5.1 | |
| SonicWALL Global Management System | =6.0 | |
| SonicWALL Global Management System | =7.0 | |
| Sonicwall Universal Management Appliance | =5.1 | |
| Sonicwall Universal Management Appliance | =6.0 | |
| Sonicwall Universal Management Appliance | =7.0 | |
| Sonicwall Viewpoint | =4.1 | |
| Sonicwall Viewpoint | =5.0 | |
| Sonicwall Viewpoint | =6.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2013-1360?
The severity of CVE-2013-1360 is critical.
Which software versions are affected by CVE-2013-1360?
CVE-2013-1360 affects DELL SonicWALL Global Management System (GMS) 4.1, 5.0, 5.1, 6.0, and 7.0, Analyzer 7.0, Universal Management Appliance (UMA) 5.1, 6.0, and 7.0, and ViewPoint 4.1, 5.0, and 6.0.
How can an attacker exploit CVE-2013-1360?
An attacker can exploit CVE-2013-1360 by sending a crafted request to the SGMS interface.
What is the Common Weakness Enumeration (CWE) ID for CVE-2013-1360?
CVE-2013-1360 is associated with CWE-287.
Are there any references available for CVE-2013-1360?
Yes, you can find references for CVE-2013-1360 at the following URLs: [Reference 1](http://archives.neohapsis.com/archives/bugtraq/2013-01/0075.html), [Reference 2](http://www.exploit-db.com/exploits/24203), [Reference 3](http://www.securityfocus.com/bid/57446).
- collector/nvd-index
- agent/author
- agent/severity
- agent/references
- agent/type
- agent/tags
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- vendor/sonicwall
- canonical/sonicwall analyzer
- version/sonicwall analyzer/7.0
- canonical/sonicwall global management system
- version/sonicwall global management system/4.1
- version/sonicwall global management system/5.0
- version/sonicwall global management system/5.1
- version/sonicwall global management system/6.0
- version/sonicwall global management system/7.0
- canonical/sonicwall universal management appliance
- version/sonicwall universal management appliance/5.1
- version/sonicwall universal management appliance/6.0
- version/sonicwall universal management appliance/7.0
- canonical/sonicwall viewpoint
- version/sonicwall viewpoint/4.1
- version/sonicwall viewpoint/5.0
- version/sonicwall viewpoint/6.0