← back
CVE-2014-8420

CVE-2014-8420

EPSS 24.0%

Patch soon. has a working public exploit.

Vexday Risk Score
23Low
SSVC decision (CISA)
Attend
PoC available → attend closely
Exploit maturity
Functional exploit
Automatable exploit available (Nuclei/Metasploit).
CVSS EPSS 24.0%KEV nãoPoC Nuclei Metasploit simPatch
Lifecycle
25 Nov 2014Published on NVD
22 Jul 2016Metasploit module available
Weaponization speed
604 daysto Metasploit module
Recommendation: Plan a near-term fix — a public PoC already exists.
The ViewPoint web application in Dell SonicWALL Global Management System (GMS) before 7.2 SP2, SonicWALL Analyzer before 7.2 SP2, and SonicWALL UMA before 7.2 SP2 allows remote authenticated users to execute arbitrary code via unspecified vectors.
Affected products
n/a · n/a