What is the severity of CVE-2016-2396?

CVE-2016-2396 is considered a high severity vulnerability that allows remote authenticated users to execute arbitrary commands.

How do I fix CVE-2016-2396?

To fix CVE-2016-2396, update your Dell SonicWALL GMS, Analyzer, or UMA EM5000 to the patched versions above Hotfix 168056.

Who is affected by CVE-2016-2396?

CVE-2016-2396 affects users running Dell SonicWALL GMS, Analyzer, and UMA EM5000 versions 7.2, 8.0, and 8.1 before Hotfix 168056.

What can attackers do with CVE-2016-2396?

Attackers exploiting CVE-2016-2396 can execute arbitrary commands on the affected systems, which could lead to further system compromise.

Is CVE-2016-2396 exploitable remotely?

Yes, CVE-2016-2396 is exploitable remotely by authenticated users, making it particularly concerning for system security.

Vulnerability/
CVE-2016-2396

critical

9.9

CWE

17/2/2016

5/8/2024

CVE-2016-2396: Command Injection

First published: Wed Feb 17 2016(Updated: )

The GMS ViewPoint (GMSVP) web application in Dell SonicWALL GMS, Analyzer, and UMA EM5000 7.2, 8.0, and 8.1 before Hotfix 168056 allows remote authenticated users to execute arbitrary commands via vectors related to configuration input.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
SonicWALL Analyzer	=7.2
SonicWALL Analyzer	=8.0
SonicWALL Analyzer	=8.1
SonicWALL Global Management System	=7.2
SonicWALL Global Management System	=8.0
SonicWALL Global Management System	=8.1
Sonicwall Uma Em5000 Firmware	=7.2
Sonicwall Uma Em5000 Firmware	=8.0
Sonicwall Uma Em5000 Firmware	=8.1
Sonicwall Uma Em5000

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2016-2396?
CVE-2016-2396 is considered a high severity vulnerability that allows remote authenticated users to execute arbitrary commands.
How do I fix CVE-2016-2396?
To fix CVE-2016-2396, update your Dell SonicWALL GMS, Analyzer, or UMA EM5000 to the patched versions above Hotfix 168056.
Who is affected by CVE-2016-2396?
CVE-2016-2396 affects users running Dell SonicWALL GMS, Analyzer, and UMA EM5000 versions 7.2, 8.0, and 8.1 before Hotfix 168056.
What can attackers do with CVE-2016-2396?
Attackers exploiting CVE-2016-2396 can execute arbitrary commands on the affected systems, which could lead to further system compromise.
Is CVE-2016-2396 exploitable remotely?
Yes, CVE-2016-2396 is exploitable remotely by authenticated users, making it particularly concerning for system security.

collector/nvd-index
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/severity
agent/references
agent/last-modified-date
agent/weakness
agent/author
agent/tags
agent/event
agent/description
agent/first-publish-date
agent/source
vendor/sonicwall
canonical/sonicwall analyzer
version/sonicwall analyzer/7.2
version/sonicwall analyzer/8.0
version/sonicwall analyzer/8.1
canonical/sonicwall global management system
version/sonicwall global management system/7.2
version/sonicwall global management system/8.0
version/sonicwall global management system/8.1
canonical/sonicwall uma em5000 firmware
version/sonicwall uma em5000 firmware/7.2
version/sonicwall uma em5000 firmware/8.0
version/sonicwall uma em5000 firmware/8.1
canonical/sonicwall uma em5000

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.