solarwinds
324 tracked vulnerabilities.
CVE-2024-23478
HIGH
SolarWinds Access Rights Manager < 2023.2.3 - Authenticated Remote Code Execution via Deserialization
Feb 15, 2024
CVSS 8.0
EPSS 0.82
CVE-2024-23477
HIGH
SolarWinds Access Rights Manager < 2023.2.3 - Unauthenticated Directory Traversal and Remote Code Execution
Feb 15, 2024
CVSS 7.9
EPSS 0.08
CVE-2024-23476
CRITICAL
SolarWinds Access Rights Manager < 2023.2.3 - Unauthenticated Directory Traversal and Remote Code Execution
Feb 15, 2024
CVSS 9.6
EPSS 0.07
CVE-2023-40057
CRITICAL
SolarWinds Access Rights Manager < 2023.2.2 - Authenticated Remote Code Execution via Deserialization
Feb 15, 2024
CVSS 9.0
EPSS 0.04
CVE-2023-50395
HIGH
SolarWinds Platform < 2024.1 - Authenticated SQL Injection and Remote Code Execution via Update Statement
Feb 06, 2024
CVSS 8.0
EPSS 0.02
CVE-2023-35188
HIGH
SolarWinds Platform < 2024.1 - Authenticated SQL Injection via CREATE Statement
Feb 06, 2024
CVSS 8.0
EPSS 0.02
CVE-2023-40058
MEDIUM
SolarWinds Access Rights Manager < 2023.2.1 - Unauthorized Sensitive Data Exposure via Public Knowledgebase
Dec 21, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-40053
MEDIUM
SolarWinds Serv-U 15.4 - Authenticated Arbitrary File Write via File Share Function
Dec 06, 2023
CVSS 5.0
EPSS 0.01
CVE-2023-40056
HIGH
SolarWinds Platform < 2023.4.2 - Authenticated SQL Injection
Nov 28, 2023
CVSS 8.0
EPSS 0.05
CVE-2023-40055
HIGH
SolarWinds Network Configuration Manager < 2023.4 - Directory Traversal Remote Code Execution
Nov 09, 2023
CVSS 8.0
EPSS 0.02
CVE-2023-40054
HIGH
SolarWinds Network Configuration Manager < 2023.4 - Directory Traversal Remote Code Execution
Nov 09, 2023
CVSS 8.0
EPSS 0.03
CVE-2023-40062
HIGH
SolarWinds Platform < 2023.4 - Remote Code Execution via Incomplete List of Disallowed Inputs
Nov 01, 2023
CVSS 8.0
EPSS 0.03
CVE-2023-40061
HIGH
SolarWinds Platform < 2023.4 - Insecure Job Execution Mechanism
Nov 01, 2023
CVSS 8.8
EPSS 0.00
CVE-2023-33228
MEDIUM
SolarWinds Network Configuration Manager - Info Disclosure
Nov 01, 2023
CVSS 4.5
EPSS 0.00
CVE-2023-33227
HIGH
Network Configuration Manager - Path Traversal
Nov 01, 2023
CVSS 8.0
EPSS 0.02
CVE-2023-33226
HIGH
Network Configuration Manager - Path Traversal
Nov 01, 2023
CVSS 8.0
EPSS 0.02
CVE-2023-35187
HIGH
SolarWinds Access Rights Manager < 2023.2.0.73 - Unauthenticated Path Traversal and Remote Code Execution
Oct 19, 2023
CVSS 8.8
EPSS 0.03
CVE-2023-35186
HIGH
SolarWinds Access Rights Manager < 2023.2.0.73 - Authenticated Remote Code Execution via Deserialization
Oct 19, 2023
CVSS 8.0
EPSS 0.02
CVE-2023-35185
MEDIUM
SolarWinds Access Rights Manager < 2023.2.0.73 - Directory Traversal Remote Code Execution
Oct 19, 2023
CVSS 6.8
EPSS 0.01
CVE-2023-35184
HIGH
SolarWinds Access Rights Manager < 2023.2.0.73 - Unauthenticated Remote Code Execution via Deserialization
Oct 19, 2023
CVSS 8.8
EPSS 0.01
CVE-2023-35183
HIGH
SolarWinds Access Rights Manager < 2023.2.0.73 - Authenticated Privilege Escalation via Local Resource Abuse
Oct 19, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-35182
HIGH
SolarWinds Access Rights Manager < 2023.2.0.73 - Unauthenticated Remote Code Execution via Deserialization
Oct 19, 2023
CVSS 8.8
EPSS 0.02
CVE-2023-35181
HIGH
SolarWinds Access Rights Manager < 2023.2.0.73 - Privilege Escalation via Incorrect Folder Permissions
Oct 19, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-35180
HIGH
SolarWinds Access Rights Manager < 2023.2.0.73 - Authenticated Remote Code Execution via API Abuse
Oct 19, 2023
CVSS 8.0
EPSS 0.27
CVE-2023-23845
MEDIUM
SolarWinds Platform - Privilege Escalation
Sep 13, 2023
CVSS 6.8
EPSS 0.05
Products
orion_platform 49
serv-u 40
access_rights_manager 32
solarwinds_platform 27
web_help_desk 21
serv-u_file_server 20
serv-u_ftp_server 11
database_performance_analyzer 10
n-central 9
orion_network_performance_monitor 9
network_performance_monitor 8
observability_self-hosted 8
dameware_mini_remote_control 7
network_configuration_manager 7
tftp_server 6
webhelpdesk 6
kiwi_syslog_server 5
log_and_event_manager 5
orion_web_performance_monitor 4
security_event_manager 4
log_\&_event_manager 3
patch_manager 3
server_and_application_monitor 3
storage_manager 3
virtualization_manager 3
SolarWinds Observability Self-Hosted 2
ftp_voyager 2
kiwi_cattools 2
netpath 2
serv-u_mft_server 2
Quick Filters