CVE-2014-4977

Dell SonicWall Scrutinizer 11.0.1 - SQL Injection

Title source: llm

Description

Multiple SQL injection vulnerabilities in Dell SonicWall Scrutinizer 11.0.1 allow remote authenticated users to execute arbitrary SQL commands via the (1) selectedUserGroup parameter in a create new user request to cgi-bin/admin.cgi or the (2) user_id parameter in the changeUnit function, (3) methodDetail parameter in the methodDetail function, or (4) xcNetworkDetail parameter in the xcNetworkDetail function in d4d/exporters.php.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotemultiple

https://www.exploit-db.com/exploits/39836

View Code ZIP pw:eip

metasploit WORKING POC EXCELLENT

by bperry, sinn3r · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/sonicwall_scrutinizer_methoddetail_sqli.rb

View Code ZIP pw:eip

References (8)

[Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/127429/Dell-Sonicwall-Scrutinizer-11.01-Code-Execution-SQL-Injection.html

[Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/137098/Dell-SonicWALL-Scrutinizer-11.01-methodDetail-SQL-Injection.html

[Mailing List, Third Party Advisory] http://seclists.org/fulldisclosure/2014/Jul/44

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/68495

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/94439

[Third Party Advisory] https://gist.github.com/brandonprry/36b4b8df1cde279a9305

[Exploit, Third Party Advisory] https://gist.github.com/brandonprry/76741d9a0d4f518fe297

[Third Party Advisory, VDB Entry] https://www.exploit-db.com/exploits/39836/

Scores

EPSS 0.8448

EPSS Percentile 99.3%

Classification

CWE

CWE-89

Status draft

Affected Products (1)

sonicwall/scrutinizer

Timeline

Published Jul 16, 2014

Tracked Since Feb 18, 2026