solarwinds
320 tracked vulnerabilities.
CVE-2024-23471
CRITICAL
SolarWinds Access Rights Manager < 2023.2.4 - Authenticated Remote Code Execution
Jul 17, 2024
CVSS 9.6
EPSS 0.02
CVE-2024-23470
CRITICAL
SolarWinds Access Rights Manager < 2023.2.4 - Unauthenticated Remote Code Execution
Jul 17, 2024
CVSS 9.6
EPSS 0.02
CVE-2024-23469
CRITICAL
SolarWinds Access Rights Manager < 2023.2.4 - Unauthenticated Remote Code Execution
Jul 17, 2024
CVSS 9.6
EPSS 0.11
CVE-2024-23468
HIGH
SolarWinds Access Rights Manager < 2023.2.4 - Unauthenticated Path Traversal and Information Disclosure
Jul 17, 2024
CVSS 7.6
EPSS 0.01
CVE-2024-23467
CRITICAL
SolarWinds Access Rights Manager < 2023.2.4 - Unauthenticated Directory Traversal and Remote Code Execution
Jul 17, 2024
CVSS 9.6
EPSS 0.03
CVE-2024-23466
CRITICAL
SolarWinds Access Rights Manager < 2023.2.4 - Unauthenticated Directory Traversal and Remote Code Execution
Jul 17, 2024
CVSS 9.6
EPSS 0.03
CVE-2024-23465
HIGH
SolarWinds Access Rights Manager < 2023.2.4 - Unauthenticated Authentication Bypass
Jul 17, 2024
CVSS 8.3
EPSS 0.00
CVE-2024-28995
HIGH
KEVNUCLEI
SolarWinds Serv-U - Directory Traversal
Jun 06, 2024
CVSS 8.6
EPSS 0.94
CVE-2024-29004
HIGH
SolarWinds Platform < 2024.2 - Stored Cross-Site Scripting in Web Console
Jun 04, 2024
CVSS 7.1
EPSS 0.00
CVE-2024-28999
MEDIUM
SolarWinds Platform < 2024.2 - Race Condition in Web Console
Jun 04, 2024
CVSS 6.4
EPSS 0.06
CVE-2024-28996
HIGH
SolarWinds Platform < 2024.2 - SWQL Injection
Jun 04, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-29000
HIGH
SolarWinds Platform < 2024.1.1 - Reflected Cross-Site Scripting in Web Console
May 20, 2024
CVSS 7.9
EPSS 0.00
CVE-2024-28075
CRITICAL
SolarWinds Access Rights Manager < 2023.2.4 - Authenticated Remote Code Execution via Deserialization
May 14, 2024
CVSS 9.0
EPSS 0.74
CVE-2024-23473
HIGH
SolarWinds Access Rights Manager < 2023.2.4 - Hard-coded Credential Authentication Bypass
May 14, 2024
CVSS 8.6
EPSS 0.00
CVE-2024-28072
MEDIUM
SolarWinds Serv-U < 15.4.2 - Arbitrary File Write via Log File Path Tags
May 03, 2024
CVSS 5.7
EPSS 0.00
CVE-2024-29003
HIGH
SolarWinds Platform < 2024.1.1 - Authenticated Stored Cross-Site Scripting in Maps UI
Apr 18, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-29001
HIGH
SolarWinds Platform < 2024.1.1 - Authenticated SQL Injection via SWQL Interface
Apr 18, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-28076
HIGH
SolarWinds Platform < 2024.1.1 - Open Redirect via URL Parameter
Apr 18, 2024
CVSS 7.0
EPSS 0.00
CVE-2024-28073
HIGH
SolarWinds Serv-U < 15.4.2 - Authenticated Directory Traversal Remote Code Execution
Apr 17, 2024
CVSS 8.4
EPSS 0.00
CVE-2024-0692
HIGH
NUCLEI
SolarWinds Security Event Manager - RCE
Mar 01, 2024
CVSS 8.8
EPSS 0.78
CVE-2024-23479
CRITICAL
SolarWinds Access Rights Manager < 2023.2.3 - Unauthenticated Directory Traversal and Remote Code Execution
Feb 15, 2024
CVSS 9.6
EPSS 0.01
CVE-2024-23478
HIGH
SolarWinds Access Rights Manager < 2023.2.3 - Authenticated Remote Code Execution via Deserialization
Feb 15, 2024
CVSS 8.0
EPSS 0.62
CVE-2024-23477
HIGH
SolarWinds Access Rights Manager < 2023.2.3 - Unauthenticated Directory Traversal and Remote Code Execution
Feb 15, 2024
CVSS 7.9
EPSS 0.01
CVE-2024-23476
CRITICAL
SolarWinds Access Rights Manager < 2023.2.3 - Unauthenticated Directory Traversal and Remote Code Execution
Feb 15, 2024
CVSS 9.6
EPSS 0.02
CVE-2023-40057
CRITICAL
SolarWinds Access Rights Manager < 2023.2.2 - Authenticated Remote Code Execution via Deserialization
Feb 15, 2024
CVSS 9.0
EPSS 0.12
Products
orion_platform 49
serv-u 39
access_rights_manager 32
solarwinds_platform 27
serv-u_file_server 20
web_help_desk 20
serv-u_ftp_server 11
database_performance_analyzer 10
n-central 9
orion_network_performance_monitor 9
network_performance_monitor 8
observability_self-hosted 8
dameware_mini_remote_control 7
network_configuration_manager 7
tftp_server 6
webhelpdesk 6
kiwi_syslog_server 5
log_and_event_manager 5
orion_web_performance_monitor 4
security_event_manager 4
log_\&_event_manager 3
patch_manager 3
server_and_application_monitor 3
storage_manager 3
virtualization_manager 3
SolarWinds Observability Self-Hosted 2
ftp_voyager 2
kiwi_cattools 2
netpath 2
serv-u_mft_server 2
Quick Filters