Unrated severityNVD Advisory· Published Feb 14, 2014· Updated Apr 29, 2026

CVE-2014-0332

Description

Cross-site scripting (XSS) vulnerability in mainPage in Dell SonicWALL GMS before 7.1 SP2, SonicWALL Analyzer before 7.1 SP2, and SonicWALL UMA E5000 before 7.1 SP2 might allow remote attackers to inject arbitrary web script or HTML via the node_id parameter in a ScreenDisplayManager genNetwork action.

Affected products

SonicWall/Analyzer3 versions
cpe:2.3:a:sonicwall:analyzer:7.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:sonicwall:analyzer:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:sonicwall:analyzer:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:sonicwall:analyzer:7.1:sp1:*:*:*:*:*:*
SonicWall/Global Management System3 versions
cpe:2.3:a:sonicwall:global_management_system:7.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:sonicwall:global_management_system:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:sonicwall:global_management_system:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:sonicwall:global_management_system:7.1:sp1:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.kb.cert.org/vuls/id/727318nvdThird Party AdvisoryUS Government Resource
www.securityfocus.com/bid/65498nvdThird Party AdvisoryVDB Entry
www.sonicwall.com/us/shared/download/Support_Bulletin_GMS_Vulnerability_XSS_Resolved_in_7.1_SP2_and_7.2.pdfnvdVendor Advisory
osvdb.org/103216nvdBroken Link
exchange.xforce.ibmcloud.com/vulnerabilities/91062nvdVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000