What is CVE-2023-34127?

CVE-2023-34127 is a vulnerability in Sonicwall Analytics, classified under OS Command Injection. Published 2023-07-13.

Is CVE-2023-34127 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

RCE in Sonicwall Analytics

CVE-2023-34127

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in SonicWall GMS, SonicWall Analytics enables an authenticated attacker to execute arbitrary code with root privileges. This issue aff…

Vulnerability class: Command Injection (OS Command Injection)

EPSS: 0.906 (99.6th percentile) — read the EPSS interpretation.

Affected products

Sonicwall Analytics — versions 2.5.0.4-R7 and earlier versions
Sonicwall Gms — versions 9.3.2-SP1 and earlier versions

Weakness classification (CWE)

CWE-78 — OS Command Injection

Public proof-of-concept exploits

rapid7/metasploit-framework
nitish778191/fitness_

References

psirt.global.sonicwall.com/vuln-detail/SNWLID-2023-0010 (vendor-advisory)
www.sonicwall.com/support/notices/230710150218060 (related)
packetstormsecurity.com/files/174571/Sonicwall-GMS-9.9.9320-Remote-Code-Executi…

Frequently asked questions

What is CVE-2023-34127?: CVE-2023-34127 is a vulnerability in Sonicwall Analytics, classified under OS Command Injection. Published 2023-07-13.
Is CVE-2023-34127 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.