solarwinds

320 tracked vulnerabilities.

CVE-2023-33229 LOW
SolarWinds Platform < 2023.3.0 - Authenticated HTML Injection via URL Parameter
Jul 26, 2023
CVSS 3.5
EPSS 0.01
CVE-2023-23842 HIGH
SolarWinds Network Configuration Manager - Path Traversal
Jul 26, 2023
CVSS 7.2
EPSS 0.00
CVE-2023-33225 HIGH
SolarWinds Platform - Privilege Escalation
Jul 26, 2023
CVSS 7.2
EPSS 0.00
CVE-2023-33224 HIGH
SolarWinds Platform - Privilege Escalation
Jul 26, 2023
CVSS 7.2
EPSS 0.00
CVE-2023-23844 HIGH
SolarWinds Platform - Privilege Escalation
Jul 26, 2023
CVSS 7.2
EPSS 0.00
CVE-2023-23843 HIGH
SolarWinds Platform - Privilege Escalation
Jul 26, 2023
CVSS 7.2
EPSS 0.00
CVE-2023-33231 MEDIUM
SolarWinds Database Performance Analyzer < 2023.2.100 - Cross-Site Scripting
Jul 18, 2023
CVSS 6.1
EPSS 0.00
CVE-2023-23841 HIGH
SolarWinds Serv-U - Info Disclosure
Jun 15, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-23839 MEDIUM
SolarWinds Platform - Info Disclosure
Apr 25, 2023
CVSS 6.5
EPSS 0.02
CVE-2023-23838 MEDIUM
Directory Traversal/File Enumeration - Path Traversal
Apr 25, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-23837 HIGH
No Exception Handling - Info Disclosure
Apr 25, 2023
CVSS 7.5
EPSS 0.02
CVE-2023-23836 HIGH
SolarWinds Platform <2022.4.1 - Deserialization
Feb 15, 2023
CVSS 7.2
EPSS 0.67
CVE-2022-47509 MEDIUM
SolarWinds Orion Platform < 2023.2 - Authenticated Cross-Site Scripting via URL Parameter Injection
Apr 21, 2023
CVSS 6.1
EPSS 0.03
CVE-2022-47505 HIGH
SolarWinds Orion Platform < 2023.2 - Local Privilege Escalation
Apr 21, 2023
CVSS 7.8
EPSS 0.00
CVE-2022-36963 HIGH
SolarWinds Orion Platform < 2023.2 - Authenticated Remote Code Execution
Apr 21, 2023
CVSS 7.2
EPSS 0.05
CVE-2022-47508 HIGH
SolarWinds Server & Application Monitor - Unauthenticated NTLM Traffic Exposure via IP Address Polling
Feb 15, 2023
CVSS 7.5
EPSS 0.00
CVE-2022-47507 HIGH
SolarWinds Orion Platform - Remote Code Execution via Deserialization of Untrusted Data
Feb 15, 2023
CVSS 7.2
EPSS 0.11
CVE-2022-47506 HIGH
SolarWinds Orion Platform - Authenticated Path Traversal and Arbitrary Command Execution via Default Configuration Edit
Feb 15, 2023
CVSS 7.8
EPSS 0.00
CVE-2022-47504 HIGH
SolarWinds Orion Platform - Authenticated Remote Code Execution via Untrusted Data Deserialization
Feb 15, 2023
CVSS 7.2
EPSS 0.07
CVE-2022-47503 HIGH
SolarWinds Orion Platform - Remote Code Execution via Untrusted Data Deserialization
Feb 15, 2023
CVSS 7.2
EPSS 0.11
CVE-2022-38111 HIGH
SolarWinds Platform - Code Injection
Feb 15, 2023
CVSS 7.2
EPSS 0.17
CVE-2022-47012 HIGH
GNS3 dynamips <0.2.21 - Buffer Overflow
Jan 20, 2023
CVSS 7.5
EPSS 0.01
CVE-2022-38112 HIGH
SolarWinds Database Performance Analyzer < 2022.4 - Cleartext Storage of Sensitive Information in Heap Memory Dumps
Jan 20, 2023
CVSS 7.5
EPSS 0.01
CVE-2022-38110 MEDIUM
Database Performance Analyzer <2022.4 - CSRF
Jan 20, 2023
CVSS 5.4
EPSS 0.03
CVE-2022-47512 MEDIUM
SolarWinds Platform 2022.4 - Cleartext Storage of Sensitive Information
Dec 19, 2022
CVSS 5.5
EPSS 0.00
Products
orion_platform 49 serv-u 39 access_rights_manager 32 solarwinds_platform 27 serv-u_file_server 20 web_help_desk 20 serv-u_ftp_server 11 database_performance_analyzer 10 n-central 9 orion_network_performance_monitor 9 network_performance_monitor 8 observability_self-hosted 8 dameware_mini_remote_control 7 network_configuration_manager 7 tftp_server 6 webhelpdesk 6 kiwi_syslog_server 5 log_and_event_manager 5 orion_web_performance_monitor 4 security_event_manager 4 log_\&_event_manager 3 patch_manager 3 server_and_application_monitor 3 storage_manager 3 virtualization_manager 3 SolarWinds Observability Self-Hosted 2 ftp_voyager 2 kiwi_cattools 2 netpath 2 serv-u_mft_server 2
Quick Filters
Critical CVEs With Exploits In CISA KEV