SonicOS Hard-coded Password in dynHandleBuyToolbar Demo
CVE-2023-41713 Published on October 17, 2023
SonicOS Use of Hard-coded Password vulnerability in the 'dynHandleBuyToolbar' demo function.
Weakness Type
Use of Hard-coded Password
The software contains a hard-coded password, which it uses for its own inbound authentication or for outbound communication to external components.
Products Associated with CVE-2023-41713
Want to know whenever a new CVE is published for SonicWall Sonicos? stack.watch will email you.
Affected Versions
SonicWall SonicOS:- Version 7.0.1-5119 and earlier versions is affected.
- Version 7.0.1-5129 and earlier versions is affected.
- Version 6.5.4.4-44v-21-2079 and earlier versions is affected.
- Version 6.5.4.12-101n and earlier versions is affected.
- Before 7.0.1-5119 is affected.
- Before 7.0.1-5129 is affected.
- Before 6.5.4.4-44v-21-2079 is affected.
- Before 6.5.4.12-101n is affected.
Exploit Probability
EPSS
0.29%
Percentile
52.37%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.