Is CVE-2013-1360 actively exploited?

CVE-2013-1360 has no public evidence of in-the-wild exploitation as of 2024-11-21.

What is the CVSS score for CVE-2013-1360?

CVE-2013-1360 has a CVSS score of 9.8 (CRITICAL severity). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H.

How do I patch CVE-2013-1360?

Patch guidance is available from sonicwall security advisories. CVEDatabase generates AI-assisted remediation guidance on demand for CVE-2013-1360.

Fix CVE-2013-1360 - CRITICAL sonicwall analyzer

Q: Which products are affected by CVE-2013-1360?

12 products: sonicwall analyzer, sonicwall global management system, sonicwall global management system, sonicwall global management system, sonicwall global management system, and 7 more.

Description

An Authentication Bypass vulnerability exists in DELL SonicWALL Global Management System (GMS) 4.1, 5.0, 5.1, 6.0, and 7.0, Analyzer 7.0, Universal Management Appliance (UMA) 5.1, 6.0, and 7.0 and ViewPoint 4.1, 5.0, and 6.0 via a crafted request to the SGMS interface, which could let a remote malicious user obtain administrative access.

CVSS Metrics

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector: network
Complexity: low
Privileges: none
User Action: none
Scope: unchanged
Confidentiality: high
Integrity: high
Availability: high
Weaknesses: CWE-287 · Improper Authentication

Metadata

Primary Vendor: SONICWALL
Published: 2/11/2020
Last Modified: 11/21/2024
Source: NIST NVD
Note: Verify all details with official vendor sources before applying patches.

Affected Products

sonicwall : analyzersonicwall : global_management_systemsonicwall : global_management_systemsonicwall : global_management_systemsonicwall : global_management_systemsonicwall : global_management_systemsonicwall : universal_management_appliancesonicwall : universal_management_appliancesonicwall : universal_management_appliancesonicwall : viewpointsonicwall : viewpointsonicwall : viewpoint

Remediation Guidance

Executive Summary

View on NIST NVD