CVE-2013-1359

CRITICAL

DELL SonicWALL Analyzer 7.0, GMS 4.1-7.0, UMA 5.1-7.0, ViewPoint 4.1-6.0 - Authentication Bypass

Title source: llm

Exploitation Summary

EIP tracks 3 public exploits for CVE-2013-1359. PoCs published by Metasploit, Nikolas Sotiriu, including Metasploit module exploits/multi/http/sonicwall_gms_upload.

AI-analyzed exploit summary This Metasploit module exploits an authentication bypass and arbitrary file upload vulnerability in SonicWALL GMS 6.0 to achieve remote code execution. It uploads a malicious JSP file that decodes and executes a payload, targeting both Windows and Linux platforms.

Description

An Authentication Bypass Vulnerability exists in DELL SonicWALL Analyzer 7.0, Global Management System (GMS) 4.1, 5.0, 5.1, 6.0, and 7.0; Universal Management Appliance (UMA) 5.1, 6.0, and 7.0 and ViewPoint 4.1, 5.0, 5.1, and 6.0 via the skipSessionCheck parameter to the UMA interface (/appliance/), which could let a remote malicious user obtain access to the root account.

Exploits (3)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotemultiple

https://www.exploit-db.com/exploits/24322

View Code ZIP pw:eip

This Metasploit module exploits an authentication bypass and arbitrary file upload vulnerability in SonicWALL GMS 6.0 to achieve remote code execution. It uploads a malicious JSP file that decodes and executes a payload, targeting both Windows and Linux platforms.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: SonicWALL GMS 6.0 (including 6.0.6017 and 6.0.6022)

No auth needed

Prerequisites: Network access to the SonicWALL GMS web interface · Target must be running a vulnerable version of SonicWALL GMS

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1505.003 - Web Shell

devstral-2 · analyzed Feb 16, 2026 Full analysis →

exploitdb WORKING POC

by Nikolas Sotiriu · perlwebappsmultiple

https://www.exploit-db.com/exploits/24204

View Code ZIP pw:eip

This exploit targets a vulnerability in SonicWALL GMS/VIEWPOINT 6.x and Analyzer 7.x, allowing remote code execution by uploading a malicious JSP shell. The exploit checks for vulnerability, determines the target OS, and uploads a reverse shell payload.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: SonicWALL GMS/VIEWPOINT 6.x, Analyzer 7.x

No auth needed

Prerequisites: Network access to the target · Perl environment with required modules

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1210 - Exploitation of Remote Services

devstral-2 · analyzed Feb 16, 2026 Full analysis →

metasploit WORKING POC EXCELLENT

by Nikolas Sotiriu · rubypocjava

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/sonicwall_gms_upload.rb

View Code ZIP pw:eip

This Metasploit module exploits an authentication bypass and arbitrary file upload vulnerability in SonicWALL GMS 6.0 to achieve remote code execution. It uploads a malicious JSP file to deploy a payload (WAR or executable) and trigger execution.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: SonicWALL GMS 6.0 (including Virtual Appliance)

No auth needed

Prerequisites: Network access to SonicWALL GMS web interface · Vulnerable version of SonicWALL GMS (6.0)

MITRE ATT&CK