Show filters
50 Total Results
Displaying 11-20 of 50
Sort by:
Attacker Value
Unknown
CVE-2022-36963
Disclosure Date: April 17, 2023 (last updated October 08, 2023)
The SolarWinds Platform was susceptible to the Command Injection Vulnerability. This vulnerability allows a remote adversary with a valid SolarWinds Platform admin account to execute arbitrary commands.
0
Attacker Value
Unknown
CVE-2022-38111
Disclosure Date: February 15, 2023 (last updated October 08, 2023)
SolarWinds Platform was susceptible to the Deserialization of Untrusted Data. This vulnerability allows a remote adversary with Orion admin-level account access to SolarWinds Web Console to execute arbitrary commands.
0
Attacker Value
Unknown
CVE-2022-47503
Disclosure Date: February 15, 2023 (last updated October 08, 2023)
SolarWinds Platform was susceptible to the Deserialization of Untrusted Data. This vulnerability allows a remote adversary with Orion admin-level account access to SolarWinds Web Console to execute arbitrary commands.
0
Attacker Value
Unknown
CVE-2022-47504
Disclosure Date: February 15, 2023 (last updated October 08, 2023)
SolarWinds Platform was susceptible to the Deserialization of Untrusted Data. This vulnerability allows a remote adversary with Orion admin-level account access to SolarWinds Web Console to execute arbitrary commands.
0
Attacker Value
Unknown
CVE-2022-47507
Disclosure Date: February 15, 2023 (last updated October 08, 2023)
SolarWinds Platform was susceptible to the Deserialization of Untrusted Data. This vulnerability allows a remote adversary with Orion admin-level account access to SolarWinds Web Console to execute arbitrary commands.
0
Attacker Value
Unknown
CVE-2023-23836
Disclosure Date: February 15, 2023 (last updated October 08, 2023)
SolarWinds Platform version 2022.4.1 was found to be susceptible to the Deserialization of Untrusted Data. This vulnerability allows a remote adversary with Orion admin-level account access to the SolarWinds Web Console to execute arbitrary commands.
0
Attacker Value
Unknown
CVE-2022-47506
Disclosure Date: February 15, 2023 (last updated October 08, 2023)
SolarWinds Platform was susceptible to the Directory Traversal Vulnerability. This vulnerability allows a local adversary with authenticated account access to edit the default configuration, enabling the execution of arbitrary commands.
0
Attacker Value
Unknown
CVE-2022-36964
Disclosure Date: November 22, 2022 (last updated October 08, 2023)
SolarWinds Platform was susceptible to the Deserialization of Untrusted Data. This vulnerability allows a remote adversary with valid access to SolarWinds Web Console to execute arbitrary commands.
0
Attacker Value
Unknown
CVE-2022-36962
Disclosure Date: November 22, 2022 (last updated October 08, 2023)
SolarWinds Platform was susceptible to Command Injection. This vulnerability allows a remote adversary with complete control over the SolarWinds database to execute arbitrary commands.
0
Attacker Value
Unknown
CVE-2022-36960
Disclosure Date: November 22, 2022 (last updated September 17, 2024)
SolarWinds Platform was susceptible to Improper Input Validation. This vulnerability allows a remote adversary with valid access to SolarWinds Web Console to escalate user privileges.
0
