{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2013-01-17T00:00:00", "descriptions": [{"lang": "en", "value": "An Authentication Bypass vulnerability exists in DELL SonicWALL Global Management System (GMS) 4.1, 5.0, 5.1, 6.0, and 7.0, Analyzer 7.0, Universal Management Appliance (UMA) 5.1, 6.0, and 7.0 and ViewPoint 4.1, 5.0, and 6.0 via a crafted request to the SGMS interface, which could let a remote malicious user obtain administrative access."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2020-02-11T15:44:43", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "http://www.securitytracker.com/id/1028007"}, {"tags": ["x_refsource_MISC"], "url": "http://www.securityfocus.com/bid/57446"}, {"tags": ["x_refsource_MISC"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/81366"}, {"tags": ["x_refsource_MISC"], "url": "http://www.exploit-db.com/exploits/24203"}, {"tags": ["x_refsource_MISC"], "url": "http://archives.neohapsis.com/archives/bugtraq/2013-01/0075.html"}, {"tags": ["x_refsource_MISC"], "url": "https://packetstormsecurity.com/files/cve/CVE-2013-1360"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2013-1360", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "An Authentication Bypass vulnerability exists in DELL SonicWALL Global Management System (GMS) 4.1, 5.0, 5.1, 6.0, and 7.0, Analyzer 7.0, Universal Management Appliance (UMA) 5.1, 6.0, and 7.0 and ViewPoint 4.1, 5.0, and 6.0 via a crafted request to the SGMS interface, which could let a remote malicious user obtain administrative access."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://www.securitytracker.com/id/1028007", "refsource": "MISC", "url": "http://www.securitytracker.com/id/1028007"}, {"name": "http://www.securityfocus.com/bid/57446", "refsource": "MISC", "url": "http://www.securityfocus.com/bid/57446"}, {"name": "https://exchange.xforce.ibmcloud.com/vulnerabilities/81366", "refsource": "MISC", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/81366"}, {"name": "http://www.exploit-db.com/exploits/24203", "refsource": "MISC", "url": "http://www.exploit-db.com/exploits/24203"}, {"name": "http://archives.neohapsis.com/archives/bugtraq/2013-01/0075.html", "refsource": "MISC", "url": "http://archives.neohapsis.com/archives/bugtraq/2013-01/0075.html"}, {"name": "https://packetstormsecurity.com/files/cve/CVE-2013-1360", "refsource": "MISC", "url": "https://packetstormsecurity.com/files/cve/CVE-2013-1360"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2013-1360", "datePublished": "2020-02-11T15:44:43", "dateReserved": "2013-01-14T00:00:00", "dateUpdated": "2020-02-11T15:44:43", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:sonicwall:analyzer:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "7A9ABA5C-59AF-496A-B22E-0C88892EC8FD", "vulnerable": true}, {"criteria": "cpe:2.3:a:sonicwall:global_management_system:4.1:*:*:*:*:*:*:*", "matchCriteriaId": "3627733D-E0CD-4E00-8D36-AB4EF784977C", "vulnerable": true}, {"criteria": "cpe:2.3:a:sonicwall:global_management_system:5.0:*:*:*:*:*:*:*", "matchCriteriaId": "60563570-4865-4D8B-9E24-A371CABE1BFE", "vulnerable": true}, {"criteria": "cpe:2.3:a:sonicwall:global_management_system:5.1:*:*:*:*:*:*:*", "matchCriteriaId": "B2EFEF89-357C-4EC2-B6A3-C803E64A2227", "vulnerable": true}, {"criteria": "cpe:2.3:a:sonicwall:global_management_system:6.0:*:*:*:*:*:*:*", "matchCriteriaId": "CE35F845-3A01-4974-BD7C-88CBE759830D", "vulnerable": true}, {"criteria": "cpe:2.3:a:sonicwall:global_management_system:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "CEF95BB8-DF0B-4131-8A89-82DE559CC09B", "vulnerable": true}, {"criteria": "cpe:2.3:a:sonicwall:universal_management_appliance:5.1:*:*:*:*:*:*:*", "matchCriteriaId": "0AC115CB-0F22-47C8-86F3-9990058896FA", "vulnerable": true}, {"criteria": "cpe:2.3:a:sonicwall:universal_management_appliance:6.0:*:*:*:*:*:*:*", "matchCriteriaId": "160BD653-09A8-4939-9A5D-8EED7B5B4D78", "vulnerable": true}, {"criteria": "cpe:2.3:a:sonicwall:universal_management_appliance:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "747153CA-2225-40A3-9C21-E9E62C24892B", "vulnerable": true}, {"criteria": "cpe:2.3:a:sonicwall:viewpoint:4.1:*:*:*:*:*:*:*", "matchCriteriaId": "FE97B72B-31B2-4E2D-99EE-81A1C645CDF4", "vulnerable": true}, {"criteria": "cpe:2.3:a:sonicwall:viewpoint:5.0:*:*:*:*:*:*:*", "matchCriteriaId": "28C845AC-8B12-4147-A5D7-9D5E4C7953EB", "vulnerable": true}, {"criteria": "cpe:2.3:a:sonicwall:viewpoint:6.0:*:*:*:*:*:*:*", "matchCriteriaId": "1589B409-1AF8-4789-90C3-6E1DFA14677E", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "An Authentication Bypass vulnerability exists in DELL SonicWALL Global Management System (GMS) 4.1, 5.0, 5.1, 6.0, and 7.0, Analyzer 7.0, Universal Management Appliance (UMA) 5.1, 6.0, and 7.0 and ViewPoint 4.1, 5.0, and 6.0 via a crafted request to the SGMS interface, which could let a remote malicious user obtain administrative access."}, {"lang": "es", "value": "Se presenta una vulnerabilidad de Omisi\u00f3n de Autenticaci\u00f3n en DELL SonicWALL Global Management System (GMS) versiones 4.1, 5.0, 5.1, 6.0 y 7.0, Analyzer versi\u00f3n 7.0, Universal Management Appliance (UMA) versiones 5.1, 6.0 y 7.0 y ViewPoint versiones 4.1, 5.0 y 6.0, por medio de una petici\u00f3n dise\u00f1ada en la interfaz SGMS, que podr\u00eda permitir a un usuario malicioso remoto obtener acceso administrativo."}], "id": "CVE-2013-1360", "lastModified": "2020-02-13T14:12:06.497", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2020-02-11T16:15:12.227", "references": [{"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://archives.neohapsis.com/archives/bugtraq/2013-01/0075.html"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Third Party Advisory", "VDB Entry"], "url": "http://www.exploit-db.com/exploits/24203"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/57446"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id/1028007"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/81366"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "https://packetstormsecurity.com/files/cve/CVE-2013-1360"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-287"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}