CVE-2019-7478

CRITICAL WAF: High
CVSS 9.8 Published: 2019-12-31
CWE-89 CWE-89

A vulnerability in GMS allow unauthenticated user to SQL injection in Webservice module. This vulnerability affected GMS versions GMS 8.4, 8.5, 8.6, 8.7, 9.0 and 9.1.

WAF Coverage Analysis

SQL Injection High WAF Coverage

OWASP: A03:2021 Injection

942xxx - SQL Injection
SQL Injection High WAF Coverage

OWASP: A03:2021 Injection

942xxx - SQL Injection

Affected Software

VendorProductVersion
sonicwallglobal_management_system8.4
sonicwallglobal_management_system8.5
sonicwallglobal_management_system8.6
sonicwallglobal_management_system8.7
sonicwallglobal_management_system9.0
sonicwallglobal_management_system9.1

References

Back to CVE Database