SonicWALL Global Management System (GMS) / Analyzer sgms Webapp File Deletion

high Nessus Plugin ID 109575

Language:

Synopsis

A web application running on the remote host is affected by a file deletion vulnerability.

Description

The SonicWALL Global Management System (GMS) / Analyzer running on the remote host is affected by a file deletion vulnerability within the sgms web application due to the failure to validate user input to the ChartDisplayServlet servlet. An unauthenticated, remote attacker can exploit this issue to retrieve and delete files for the sgms web application.

Note that GMS / Analyzer is reportedly affected by other vulnerabilities as well; however, this plugin has not tested for these.

Solution

Upgrade to SonicWALL Global Management System (GMS) / Analyzer version 8.3 or later.

Plugin Details

Severity: High

ID: 109575

File Name: sonicwall_gms_sgms_webapp_file_deletion.nasl

Version: 1.2

Type: remote

Family: CGI abuses

Published: 5/4/2018

Updated: 5/7/2018

Supported Sensors: Nessus

Risk Information

CVSS v2

Risk Factor: High

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS v3

Risk Factor: High

Base Score: 7.3

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Vulnerability Information

CPE: cpe:/a:sonicwall:global_management_system, cpe:/a:sonicwall:analyzer

Required KB Items: installed_sw/sonicwall_universal_management_suite

Patch Publication Date: 3/1/2017

Detections

Analytics