cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-22280,https://securityvulnerability.io/vulnerability/CVE-2022-22280,Unauthenticated SQL Injection Vulnerability in SonicWall GMS and Analytics,"This vulnerability allows for improper neutralization of special elements used in an SQL command. It exposes SonicWall GMS and Analytics products to potential unauthorized access, enabling attackers to execute arbitrary SQL queries without authentication. This issue affects SonicWall GMS version 9.3.1-SP2-Hotfix1 and Analytics On-Prem version 2.5.0.3-2520, as well as earlier versions, creating a significant risk for affected users.",Sonicwall,"Sonicwall Gms,Sonicwall Analytics On-prem",9.8,CRITICAL,0.0014199999859556556,false,,false,false,false,,,false,false,,2022-07-29T21:05:12.000Z,0
CVE-2021-20032,https://securityvulnerability.io/vulnerability/CVE-2021-20032,Security Misconfiguration in SonicWall Analytics Affects Remote Code Execution,"SonicWall Analytics On-Prem versions prior to 2.5.2518 are susceptible to a security misconfiguration that involves the Java Debug Wire Protocol (JDWP) interface. This vulnerability can potentially allow remote attackers to execute arbitrary code on the affected systems, thereby compromising the integrity, availability, and confidentiality of the data.",Sonicwall,Sonicwall Analytics On-prem,9.8,CRITICAL,0.005270000081509352,false,,false,false,false,,,false,false,,2021-08-10T23:15:00.000Z,0