.. / CVE-2023-0126

Exploit for SonicWall SMA1000 12.4.2 - Unauthenticated Local File Inclusion (CVE-2023-0126)

Description:

Pre-authentication path traversal vulnerability in SMA1000 firmware version 12.4.2, which allows an unauthenticated attacker to access arbitrary files and directories stored outside the web root directory.

Affected Products:

Proof of Concept

PoC exploit

Nuclei Template

View the template here CVE-2023-0126.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2023/CVE-2023-0126.yaml
Copy

References:

https://nvd.nist.gov/vuln/detail/CVE-2023-0126
https://github.com/advisories/GHSA-mr28-27qx-phg3
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2023-0001
https://nehrunayak.medium.com/cve-2023-0126-sonicwall-sma1000-pre-auth-path-traversal-vulnerability-and-remediation-dfe949358f30