CVE-2014-8420
Summary
| CVE | CVE-2014-8420 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2014-11-25 15:59:00 UTC |
| Updated | 2018-03-12 17:25:00 UTC |
| Description | The ViewPoint web application in Dell SonicWALL Global Management System (GMS) before 7.2 SP2, SonicWALL Analyzer before 7.2 SP2, and SonicWALL UMA before 7.2 SP2 allows remote authenticated users to execute arbitrary code via unspecified vectors. |
Risk And Classification
Problem Types: CWE-20
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Sonicwall | Analyzer | 7.2 | sp1 | All | All |
| Application | Sonicwall | Analyzer | 7.2 | sp1 | All | All |
| Application | Sonicwall | Global Management System | 7.2 | sp1 | All | All |
| Application | Sonicwall | Global Management System | 7.2 | sp1 | All | All |
| Hardware | Sonicwall | Uma Em5000 | - | All | All | All |
| Hardware | Sonicwall | Uma Em5000 | - | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| support.software.dell.com/product-notification/136814 | CONFIRM | support.software.dell.com | Vendor Advisory |
| IBM X-Force Exchange | XF | exchange.xforce.ibmcloud.com | VDB Entry |
| Multiple Dell SonicWALL Products CVE-2014-8420 Multiple Remote Code Execution Vulnerabilities | BID | www.securityfocus.com | Third Party Advisory, VDB Entry |
| Zero Day Initiative | MISC | www.zerodayinitiative.com | Third Party Advisory, VDB Entry |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.