CVE-2016-9684

CRITICAL

Dell Sonicwall Secure Remote Access Server - Command Injection

Title source: rule

Description

The SonicWall Secure Remote Access server (version 8.1.0.2-14sv) is vulnerable to a Remote Command Injection vulnerability in its web administrative interface. This vulnerability occurs in the 'viewcert' CGI (/cgi-bin/viewcert) component responsible for processing SSL certificate information. The CGI application doesn't properly escape the information it's passed in the 'CERT' variable before a call to system() is performed - allowing for remote command injection. Exploitation of this vulnerability yields shell access to the remote machine under the nobody user account.

Exploits (1)

exploitdb WORKING POC
by xort · rubywebappshardware
https://www.exploit-db.com/exploits/41416

References (4)

Scores

CVSS v3 9.8
EPSS 0.1352
EPSS Percentile 94.2%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-77
Status published
Products (1)
dell/sonicwall_secure_remote_access_server 8.1.0.2-14sv
Published Feb 22, 2017
Tracked Since Feb 18, 2026