Known Vulnerabilities for Global Management System by Sonicwall
Listed below are 10 of the newest known vulnerabilities associated with "Global Management System" by "Sonicwall".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-22280 | Improper Neutralization of Special Elements used in an SQL Command leading to Unauthenticated SQL Injection vulnerability, im... | 9.8 - CRITICAL | 2022-07-29 | 2022-08-08 |
| CVE-2021-20030 | SonicWall GMS is vulnerable to file path manipulation resulting that an unauthenticated attacker can gain access to web direc... | 7.5 - HIGH | 2022-10-13 | 2022-10-14 |
| CVE-2021-20020 | A command execution vulnerability in SonicWall GMS 9.3 allows a remote unauthenticated attacker to locally escalate privilege... | 9.8 - CRITICAL | 2021-04-10 | 2021-04-15 |
| CVE-2019-7478 | A vulnerability in GMS allow unauthenticated user to SQL injection in Webservice module. This vulnerability affected GMS vers... | 9.8 - CRITICAL | 2019-12-31 | 2020-01-09 |
| CVE-2019-7476 | A vulnerability in SonicWall Global Management System (GMS), allow a remote user to gain access to the appliance using existi... | 8.1 - HIGH | 2019-04-26 | 2021-11-03 |
| CVE-2018-9866 | A vulnerability in lack of validation of user-supplied parameters pass to XML-RPC calls on SonicWall Global Management System... | 9.8 - CRITICAL | 2018-08-03 | 2019-10-09 |
| CVE-2018-5691 | SonicWall Global Management System (GMS) 8.1 has XSS via the `newName` and `Name` values of the `/sgms/TreeControl` module. | 5.4 - MEDIUM | 2018-01-14 | 2019-03-04 |
| CVE-2018-3639 | Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses o... | 5.5 - MEDIUM | 2018-05-22 | 2021-08-13 |
| CVE-2016-2397 | The cliserver implementation in Dell SonicWALL GMS, Analyzer, and UMA EM5000 7.2, 8.0, and 8.1 before Hotfix 168056 allows re... | 9.8 - CRITICAL | 2016-02-17 | 2018-03-12 |
| CVE-2016-2396 | The GMS ViewPoint (GMSVP) web application in Dell SonicWALL GMS, Analyzer, and UMA EM5000 7.2, 8.0, and 8.1 before Hotfix 168... | 9.9 - CRITICAL | 2016-02-17 | 2023-11-07 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Sonicwall | Global Management System | 9.1 | All | All | All |
| Application | Sonicwall | Global Management System | 9.0 | All | All | All |
| Application | Sonicwall | Global Management System | 8.7 | All | All | All |
| Application | Sonicwall | Global Management System | 8.6 | All | All | All |
| Application | Sonicwall | Global Management System | 8.5 | All | All | All |
| Application | Sonicwall | Global Management System | 8.4 | All | All | All |
| Application | Sonicwall | Global Management System | 8.1 | All | All | All |
| Application | Sonicwall | Global Management System | 8.0 | All | All | All |
| Application | Sonicwall | Global Management System | 7.2 | sp1 | All | All |
| Application | Sonicwall | Global Management System | 7.2 | All | All | All |
| Application | Sonicwall | Global Management System | 7.1 | sp1 | All | All |
| Application | Sonicwall | Global Management System | 7.1 | All | All | All |
| Application | Sonicwall | Global Management System | 7.0 | All | All | All |
| Application | Sonicwall | Global Management System | 6.0 | All | All | All |
| Application | Sonicwall | Global Management System | 5.1 | All | All | All |
| Application | Sonicwall | Global Management System | 5.0 | All | All | All |
| Application | Sonicwall | Global Management System | 4.1 | All | All | All |