Conversation
New assessment for topic: CVE-2023-34134

Topic description: "Exposure of sensitive information to an unauthorized actor vulnerability in SonicWall GMS and Analytics allows authenticated attacker to read administrator password hash via a web service call ..."

"CVE-2023-34134 is an [administrator password hash read](https://web.archive.org/web/20241215122545/https://www.sonicwall.com/support/product-notification/urgent-security-notice-sonicwall-gms-analytics-impacted-by-suite-of-vulnerabilities/230710150218060) via an [authenticated Web Services API call](https://www.nccgroup.com/us/research-blog/technical-advisory-sonicwall-global-management-system-gms-analytics-multiple-critical-vulnerabilities/) within the SonicWall Global Management System & Analytics suite ..."

Link: https://attackerkb.com/assessments/c52f41e0-f7c7-420b-9077-7c3cd7d1981a
0
0
0