CVE-2014-5024

Name of the Vulnerable Software and Affected Versions Dell SonicWALL GMS, Analyzer, and UMA versions prior to 7.2 SP1

Description A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via the node id parameter. This could potentially lead to unauthorized actions on the affected system.

Recommendations For versions prior to 7.2 SP1, update to version 7.2 SP1 or later to resolve the issue. As a temporary workaround, consider restricting access to the node id parameter to minimize the risk of exploitation.