all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Technical Advisory – SonicWall Global Management System (GMS) & Analytics – Multiple Critical Vulnerabilities

Add to bookmarks
Aug. 24, 2023, 1:08 p.m. | Rich Warren

NCC Group Research Blog research.nccgroup.com

Multiple Unauthenticated SQL Injection Issues Security Filter Bypass – CVE-2023-34133 Description The GMS web application was found to be vulnerable to numerous SQL injection issues. Additionally, security mechanisms that were in place to help prevent against SQL Injection attacks could be bypassed. Impact An unauthenticated attacker could exploit these issues to extract sensitive information, such […]

advisory analytics application attacks bypass critical critical vulnerabilities cve filter found global global management system gms impact injection injection attacks management security sonicwall sql sql injection system technical technical advisories unauthenticated vulnerabilities vulnerable web web application

Visit resource

More from research.nccgroup.com / NCC Group Research Blog

Ghidra nanoMIPS ISA module 1 week, 3 days ago | research.nccgroup.com
architecture aware baseband embedded +21
Sifting through the spines: identifying (potential) Cactus ransomware victims 3 weeks, 2 days ago | research.nccgroup.com
access blog cactus cactus ransomware +17
Public Report – Confidential Mode for Hyperdisk – DEK Protection Analysis 1 month ago | research.nccgroup.com
analysis architecture confidential data +19
Non-Deterministic Nature of Prompt Injection 1 month ago | research.nccgroup.com
attack easy explained exploiting +10
Technical Advisory – Ollama DNS Rebinding Attack (CVE-2024-28224) 1 month, 1 week ago | research.nccgroup.com
access advisory api attack +24
Public Report – Google Privacy Sandbox Aggregation Service and Coordinator 1 month, 2 weeks ago | research.nccgroup.com
aggregation companies google google privacy sandbox +16
Android Malware Vultur Expands Its Wingspan 1 month, 2 weeks ago | research.nccgroup.com
android android banking malware android malware authors +18
LTair: The LTE Air Interface Tool 2 months ago | research.nccgroup.com
air attacks blog blog post +14
The Development of a Telco Attack Testing Tool 2 months ago | research.nccgroup.com
attack blog challenges development +13

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada
View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA
View on infosec-jobs.com

IT Security Engineer

@ People Profilers | Singapore, Singapore, Singapore
View on infosec-jobs.com

Consultant - DFIR - EMEA (SA)

@ Control Risks | Johannesburg, Gauteng, South Africa
View on infosec-jobs.com

Consultant Sénior Cyber Sécurité H/F

@ Hifield | Lyon, France
View on infosec-jobs.com