CVE-2014-0332

Currently unrated

Key Information:

Vendor: Sonicwall
Status: Global Management System
Vendor: CVE Published:; 14 February 2014

Summary

Cross-site scripting (XSS) vulnerability in mainPage in Dell SonicWALL GMS before 7.1 SP2, SonicWALL Analyzer before 7.1 SP2, and SonicWALL UMA E5000 before 7.1 SP2 might allow remote attackers to inject arbitrary web script or HTML via the node_id parameter in a ScreenDisplayManager genNetwork action.

References

http://www.securityfocus.com/bid/65498

vdb-entryx_refsource_BID

http://www.kb.cert.org/vuls/id/727318

third-party-advisoryx_refsource_CERT-VN

https://exchange.xforce.ibmcloud.com/vulnerabilities/91062

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Feb 14, 2014
Vulnerability Reserved
Dec 5, 2013

Collectors

NVD DatabaseMitre Database