CVE-2012-3951

Currently unrated

Key Information:

Vendor: Sonicwall
Status: Scrutinizer
Vendor: CVE Published:; 31 July 2012

Summary

The MySQL component in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) 9.0.1.19899 and earlier has a default password of admin for the (1) scrutinizer and (2) scrutremote accounts, which allows remote attackers to execute arbitrary SQL commands via a TCP session.

References

https://www.trustwave.com/spiderlabs/advisories/TWSL2012-...

x_refsource_MISC

http://www.plixer.com/Press-Releases/plixer-releases-9-5-...

x_refsource_MISC

EPSS Score

69% chance of being exploited in the next 30 days.

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jul 31, 2012

Collectors

NVD DatabaseMitre Database