solarwinds

320 tracked vulnerabilities.

CVE-2019-9546 CRITICAL
SolarWinds Orion <2018.4-0 - Privilege Escalation
Mar 01, 2019
CVSS 9.8
EPSS 0.02
CVE-2019-8917 CRITICAL
SolarWinds Orion NPM < 12.4 - Unauthenticated RCE via OrionModuleEngine
Feb 18, 2019
CVSS 9.8
EPSS 0.36
CVE-2018-25252 MEDIUM
FTP Voyager 16.2.0 Denial of Service via Malformed Site Profile
Apr 04, 2026
CVSS 6.2
EPSS 0.00
CVE-2018-16243 MEDIUM
SolarWinds Database Performance Analyzer 11.1.468 and 12.0.3074 - Stored Cross-Site Scripting
Dec 15, 2020
CVSS 5.4
EPSS 0.04
CVE-2018-19386 MEDIUM NUCLEI
SolarWinds Database Performance Analyzer 11.1.457 - XSS
Aug 14, 2019
CVSS 6.1
EPSS 0.23
CVE-2018-13442 HIGH
SolarWinds Network Performance Monitor < 12.3 SQL Injection via ActiveAlertsOnThisEntity
Jul 16, 2019
CVSS 8.8
EPSS 0.01
CVE-2018-19999 HIGH
SolarWinds Serv-U FTP Server 15.1.6.25 - Privilege Escalation
Jun 07, 2019
CVSS 7.8
EPSS 0.00
CVE-2018-19934 MEDIUM
SolarWinds Serv-U FTP Server <15.1.6.25 - XSS
Mar 21, 2019
CVSS 4.8
EPSS 0.02
CVE-2018-15906 HIGH
SolarWinds Serv-U FTP Server 15.1.6 - Code Injection
Mar 21, 2019
CVSS 7.2
EPSS 0.04
CVE-2018-16792 CRITICAL
SolarWinds SFTP/SCP <2018-09-10 - Info Disclosure
Dec 05, 2018
CVSS 9.1
EPSS 0.00
CVE-2018-16791 CRITICAL
SolarWinds SFTP/SCP Server <2018-09-10 - Info Disclosure
Dec 05, 2018
CVSS 9.8
EPSS 0.00
CVE-2018-12897 HIGH
SolarWinds DameWare Mini Remote Control < 12.1 - Buffer Overflow
Sep 07, 2018
CVSS 7.8
EPSS 0.01
CVE-2018-10241 MEDIUM
SolarWinds Serv-U < 15.1.6 - Authenticated Denial of Service via Crafted Web Client URL
May 16, 2018
CVSS 6.5
EPSS 0.01
CVE-2018-10240 HIGH
SolarWinds Serv-U MFT <15.1.6 HFv1 - Info Disclosure
May 16, 2018
CVSS 7.3
EPSS 0.01
CVE-2017-9538 MEDIUM
SolarWinds Network Performance Monitor <12.0.15300.90 - DoS
Oct 03, 2017
CVSS 4.9
EPSS 0.06
CVE-2017-9537 MEDIUM
SolarWinds Network Performance Monitor <12.0.15300.90 - XSS
Oct 03, 2017
CVSS 4.8
EPSS 0.01
CVE-2017-7722 CRITICAL
SolarWinds LEM <6.3.1 Hotfix 4 - RCE
Apr 12, 2017
CVSS 10.0
EPSS 0.50
CVE-2017-7647 HIGH
SolarWinds LEM <6.3.1.4 - Command Injection
Apr 10, 2017
CVSS 8.8
EPSS 0.03
CVE-2017-7646 MEDIUM
SolarWinds LEM <6.3.1.4 - Info Disclosure
Apr 10, 2017
CVSS 6.5
EPSS 0.01
CVE-2017-5199 HIGH
SolarWinds LEM <6.3.1 - Authenticated RCE
Mar 24, 2017
CVSS 8.8
EPSS 0.03
CVE-2017-5198 HIGH
SolarWinds LEM <6.3.1 - Privilege Escalation
Mar 24, 2017
CVSS 8.8
EPSS 0.00
CVE-2017-6803 HIGH
SolarWinds FTP Voyager 16.2.0 - CSRF
Mar 20, 2017
CVSS 8.8
EPSS 0.00
CVE-2016-5709 MEDIUM
SolarWinds Virtualization Manager <6.3.1 - Info Disclosure
Jun 24, 2016
CVSS 4.7
EPSS 0.00
CVE-2016-3643 HIGH KEV
SolarWinds Virtualization Manager <6.3.1 - Privilege Escalation
Jun 17, 2016
CVSS 7.8
EPSS 0.05
CVE-2016-3642 CRITICAL
SolarWinds Virtualization Manager <6.3.1 - Command Injection
Jun 17, 2016
CVSS 9.8
EPSS 0.22
Products
orion_platform 49 serv-u 39 access_rights_manager 32 solarwinds_platform 27 serv-u_file_server 20 web_help_desk 20 serv-u_ftp_server 11 database_performance_analyzer 10 n-central 9 orion_network_performance_monitor 9 network_performance_monitor 8 observability_self-hosted 8 dameware_mini_remote_control 7 network_configuration_manager 7 tftp_server 6 webhelpdesk 6 kiwi_syslog_server 5 log_and_event_manager 5 orion_web_performance_monitor 4 security_event_manager 4 log_\&_event_manager 3 patch_manager 3 server_and_application_monitor 3 storage_manager 3 virtualization_manager 3 SolarWinds Observability Self-Hosted 2 ftp_voyager 2 kiwi_cattools 2 netpath 2 serv-u_mft_server 2
Quick Filters
Critical CVEs With Exploits In CISA KEV