solarwinds
320 tracked vulnerabilities.
CVE-2025-26393
MEDIUM
SolarWinds Service Desk - Privilege Escalation
Mar 17, 2025
CVSS 5.4
EPSS 0.00
CVE-2024-28988
CRITICAL
SolarWinds Web Help Desk - Unauthenticated Remote Code Execution via Java Deserialization
Sep 01, 2025
CVSS 9.8
EPSS 0.07
CVE-2024-45712
LOW
SolarWinds Serv-U < 15.5.1 - Authenticated Stored Cross-Site Scripting
Apr 15, 2025
CVSS 2.6
EPSS 0.00
CVE-2024-52612
MEDIUM
SolarWinds Platform < 2025.1 - Authenticated Reflected Cross-Site Scripting via Input Parameter
Feb 11, 2025
CVSS 6.8
EPSS 0.00
CVE-2024-52611
LOW
SolarWinds Platform < 2025.1 - Information Disclosure via Error Message
Feb 11, 2025
CVSS 3.5
EPSS 0.00
CVE-2024-52606
LOW
SolarWinds Platform < 2025.1 - Server-Side Request Forgery
Feb 11, 2025
CVSS 3.5
EPSS 0.00
CVE-2024-45718
MEDIUM
Configuration File - Info Disclosure
Feb 11, 2025
CVSS 4.6
EPSS 0.00
CVE-2024-28989
MEDIUM
SolarWinds Web Help Desk - Info Disclosure
Feb 11, 2025
CVSS 5.5
EPSS 0.00
CVE-2024-45709
MEDIUM
SolarWinds Web Help Desk < 12.8.4 - Local File Read via Path Traversal
Dec 10, 2024
CVSS 5.3
EPSS 0.01
CVE-2024-45717
HIGH
SolarWinds Platform < 2024.4.1 - Authenticated Stored Cross-Site Scripting in Search and Node Information UI
Dec 04, 2024
CVSS 7.0
EPSS 0.00
CVE-2024-45713
MEDIUM
SolarWinds Kiwi CatTools < 3.12 - Sensitive Data Exposure via Troubleshooting Mode
Oct 17, 2024
CVSS 5.1
EPSS 0.00
CVE-2024-45715
HIGH
SolarWinds Platform < 2024.4 - Cross-Site Scripting via Edit Function
Oct 16, 2024
CVSS 7.1
EPSS 0.00
CVE-2024-45714
MEDIUM
SolarWinds Serv-U < 15.4.2.3 - Authenticated Stored Cross-Site Scripting
Oct 16, 2024
CVSS 4.8
EPSS 0.00
CVE-2024-45711
HIGH
SolarWinds Serv-U < 15.5 - Authenticated Path Traversal and Remote Code Execution via Environment Variable Abuse
Oct 16, 2024
CVSS 7.5
EPSS 0.11
CVE-2024-45710
HIGH
SolarWinds Platform < 2024.4 - Local Privilege Escalation via Uncontrolled Search Path Element
Oct 16, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-28991
CRITICAL
SolarWinds Access Rights Manager < 2024.3.1 - Authenticated Remote Code Execution via Untrusted Data Deserialization
Sep 12, 2024
CVSS 9.0
EPSS 0.31
CVE-2024-28990
MEDIUM
SolarWinds Access Rights Manager < 2024.3.1 - Authentication Bypass via Hard-coded Credentials
Sep 12, 2024
CVSS 6.3
EPSS 0.00
CVE-2024-28987
CRITICAL
KEVNUCLEI
SolarWinds Web Help Desk - Hardcoded Credential
Aug 21, 2024
CVSS 9.1
EPSS 0.94
CVE-2024-28986
CRITICAL
KEVNUCLEI
SolarWinds Web Help Desk < 12.8.3 - Insecure Deserialization
Aug 13, 2024
CVSS 9.8
EPSS 0.80
CVE-2024-28993
HIGH
SolarWinds Access Rights Manager < 2024.3 - Unauthenticated Path Traversal and Information Disclosure
Jul 17, 2024
CVSS 7.6
EPSS 0.01
CVE-2024-28992
HIGH
SolarWinds Access Rights Manager < 2023.2.4 - Unauthenticated Path Traversal and Information Disclosure
Jul 17, 2024
CVSS 7.6
EPSS 0.00
CVE-2024-28074
CRITICAL
SolarWinds Access Rights Manager < 2023.2.4 - Deserialization of Untrusted Data
Jul 17, 2024
CVSS 9.6
EPSS 0.00
CVE-2024-23475
CRITICAL
SolarWinds Access Rights Manager < 2023.2.4 - Unauthenticated Directory Traversal and Information Disclosure
Jul 17, 2024
CVSS 9.6
EPSS 0.00
CVE-2024-23474
HIGH
SolarWinds Access Rights Manager < 2023.2.4 - Arbitrary File Deletion and Information Disclosure
Jul 17, 2024
CVSS 7.6
EPSS 0.00
CVE-2024-23472
CRITICAL
SolarWinds Access Rights Manager < 2023.2.4 - Authenticated Path Traversal and Arbitrary File Read/Delete
Jul 17, 2024
CVSS 9.6
EPSS 0.07
Products
orion_platform 49
serv-u 39
access_rights_manager 32
solarwinds_platform 27
serv-u_file_server 20
web_help_desk 20
serv-u_ftp_server 11
database_performance_analyzer 10
n-central 9
orion_network_performance_monitor 9
network_performance_monitor 8
observability_self-hosted 8
dameware_mini_remote_control 7
network_configuration_manager 7
tftp_server 6
webhelpdesk 6
kiwi_syslog_server 5
log_and_event_manager 5
orion_web_performance_monitor 4
security_event_manager 4
log_\&_event_manager 3
patch_manager 3
server_and_application_monitor 3
storage_manager 3
virtualization_manager 3
SolarWinds Observability Self-Hosted 2
ftp_voyager 2
kiwi_cattools 2
netpath 2
serv-u_mft_server 2
Quick Filters