CVE-2024-28999

MEDIUM

Solarwinds Platform < 2024.2 - Race Condition

Title source: rule

Description

The SolarWinds Platform was determined to be affected by a Race Condition Vulnerability affecting the web console.

Exploits (2)

exploitdb WORKING POC
by Elhussain Fathy · pythonwebappsmultiple
https://www.exploit-db.com/exploits/52055
nomisec WORKING POC 3 stars
by HussainFathy · poc
https://github.com/HussainFathy/CVE-2024-28999

References (2)

Scores

CVSS v3 6.4
EPSS 0.0648
EPSS Percentile 91.1%
Attack Vector ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:L

Details

CWE
CWE-362
Status published
Products (1)
solarwinds/solarwinds_platform < 2024.2
Published Jun 04, 2024
Tracked Since Feb 18, 2026