CVE-2016-2396

critical

Description

The GMS ViewPoint (GMSVP) web application in Dell SonicWALL GMS, Analyzer, and UMA EM5000 7.2, 8.0, and 8.1 before Hotfix 168056 allows remote authenticated users to execute arbitrary commands via vectors related to configuration input.

References

https://support.software.dell.com/product-notification/185943

http://www.zerodayinitiative.com/advisories/ZDI-16-164

http://www.securitytracker.com/id/1035015

Details

Source: Mitre, NVD

Published: 2016-02-17

Updated: 2026-06-17

Risk Information

CVSS v2

Base Score: 9

Vector: CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 9.9

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.00319

Detections

Analytics