CVE-2023-34124

CRITICAL9.8

Public PoC

Description

The authentication mechanism in SonicWall GMS and Analytics Web Services had insufficient checks, allowing authentication bypass. This issue affects GMS: 9.3.2-SP1 and earlier versions; Analytics: 2.5.0.4-R7 and earlier versions.

CVSS breakdown

CVSS 3.1

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Affected products

SonicWall / Analytics2.5.0.4-R7 and earlier versions – 2.5.0.4-R7 and earlier versions
SonicWall / GMS9.3.2-SP1 and earlier versions – 9.3.2-SP1 and earlier versions

Exploits & PoCs

nucleiSonicWall GMS and Analytics Web Services - Shell Injectionby iamnoooob,rootxharsh,pdresearch

References

VENDOR_ADVISORYhttps://psirt.global.sonicwall.com/vuln-detail/SNWLID-2023-0010
MISChttps://www.sonicwall.com/support/notices/230710150218060
EXPLOIThttp://packetstormsecurity.com/files/174571/Sonicwall-GMS-9.9.9320-Remote-Code-Execution.html