Loading HuntDB...

Vulnerability Intelligence by wss.sh

Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog Latest Updates Security News

More Sources

HackerOne Reports

Bug bounty disclosures

WordPress Vulnerabilities

WordPress plugins & themes

Tools & Data

Trending Insights

Popular vulnerabilities

Advanced Search

Filter & search CVEs

Product Inventory

Software & vendors

Sign In Sign Up

CVE-2023-34129

UNKNOWN

Published 2023-07-13T01:03:51.894Z

Actions:

No CVSS data available

Description

Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in SonicWall GMS and Analytics allows an authenticated remote attacker to traverse the directory and extract arbitrary files using Zip Slip method to any location on the underlying filesystem with root privileges. This issue affects GMS: 9.3.2-SP1 and earlier versions; Analytics: 2.5.0.4-R7 and earlier versions.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

GMS

Affected Versions:

9.3.2-SP1 and earlier versions

Analytics

Affected Versions:

2.5.0.4-R7 and earlier versions

References

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2023-0010

https://www.sonicwall.com/support/notices/230710150218060

Published: 2023-07-13T01:03:51.894Z

Last Modified: 2024-10-30T18:53:10.286Z

Copied to clipboard!