An Authentication Bypass Vulnerability exists in DELL SonicWALL Analyzer 7.0, Global Management System (GMS) 4.1, 5.0, 5.1, 6.0, and 7.0; Universal Management Appliance (UMA) 5.1, 6.0, and 7.0 and ViewPoint 4.1, 5.0, 5.1, and 6.0 via the skipSessionCheck parameter to the UMA interface (/appliance/), which could let a remote malicious user obtain access to the root account.
View Full Alert
Related Posts
CVE-2019-10973 (kace_systems_management_appliance)Quest KACE, all versions prior to version 8.0.x, 8.1.x, and 9.0.x, allows unintentional access to the appliance leveraging functions of the troubleshooting tools located in the administrator user interface. View…
-
Password Management is Being Disrupted NowDuring a recent security assessment RedZone asked the customer a standard question about password management: “Are your passwords being changed on this outsourced web server?” With Heartbleed, WordPress, and SSL vulnerabilities,…
