Detections
Analytics

CVE-2016-2397

critical

Description

The cliserver implementation in Dell SonicWALL GMS, Analyzer, and UMA EM5000 7.2, 8.0, and 8.1 before Hotfix 168056 allows remote attackers to deserialize and execute arbitrary Java code via crafted XML data.

References

http://www.zerodayinitiative.com/advisories/ZDI-16-163

http://www.securitytracker.com/id/1035015

https://support.software.dell.com/product-notification/185943

Details

Source: Mitre, NVD

Published: 2016-02-17

Updated: 2026-06-17

Risk Information

CVSS v2

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Severity: Critical

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.01379