First published: Thu Jul 13 2023(Updated: )
Exposure of sensitive information to an unauthorized actor vulnerability in SonicWall GMS and Analytics enables an unauthenticated attacker to access restricted web pages. This issue affects GMS: 9.3.2-SP1 and earlier versions; Analytics: 2.5.0.4-R7 and earlier versions.
Credit: PSIRT@sonicwall.com PSIRT@sonicwall.com
Affected Software | Affected Version | How to fix |
---|---|---|
SonicWall Analytics | <=2.5.0.4-r7 | |
SonicWALL Global Management System | <9.3.2 | |
SonicWALL Global Management System | =9.3.2 | |
SonicWALL Global Management System | =9.3.2-sp1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this issue is CVE-2023-34131.
The severity of CVE-2023-34131 is medium, with a severity value of 5.3.
SonicWall GMS versions 9.3.2-SP1 and earlier, and SonicWall Analytics versions 2.5.0.4-R7 and earlier are affected by this vulnerability.
An unauthenticated attacker can exploit this vulnerability to access restricted web pages.
You can find more information about this vulnerability on the SonicWall PSIRT website and the SonicWall support notices page.