Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Solarwinds_platform
(Solarwinds)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 19 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2023-11-01 | CVE-2023-40061 | Insecure job execution mechanism vulnerability. This vulnerability can lead to other attacks as a result. | Solarwinds_platform | N/A | ||
| 2023-11-01 | CVE-2023-40062 | SolarWinds Platform Incomplete List of Disallowed Inputs Remote Code Execution Vulnerability. If executed, this vulnerability would allow a low-privileged user to execute commands with SYSTEM privileges. | Solarwinds_platform | 8.8 | ||
| 2023-11-28 | CVE-2023-40056 | SQL Injection Remote Code Vulnerability was found in the SolarWinds Platform. This vulnerability can be exploited with a low privileged account. | Solarwinds_platform | 8.8 | ||
| 2024-02-06 | CVE-2023-35188 | SQL Injection Remote Code Execution Vulnerability was found using a create statement in the SolarWinds Platform. This vulnerability requires user authentication to be exploited. | Solarwinds_platform | 8.8 | ||
| 2024-02-06 | CVE-2023-50395 | SQL Injection Remote Code Execution Vulnerability was found using an update statement in the SolarWinds Platform. This vulnerability requires user authentication to be exploited | Solarwinds_platform | 8.8 | ||
| 2024-06-04 | CVE-2024-28996 | The SolarWinds Platform was determined to be affected by a SWQL Injection Vulnerability. Attack complexity is high for this vulnerability. | Solarwinds_platform | 8.1 | ||
| 2024-06-04 | CVE-2024-28999 | The SolarWinds Platform was determined to be affected by a Race Condition Vulnerability affecting the web console. | Solarwinds_platform | 8.1 | ||
| 2024-06-04 | CVE-2024-29004 | The SolarWinds Platform was determined to be affected by a stored cross-site scripting vulnerability affecting the web console. A high-privileged user and user interaction is required to exploit this vulnerability. | Solarwinds_platform | 4.8 | ||
| 2024-10-16 | CVE-2024-45715 | The SolarWinds Platform was susceptible to a Cross-Site Scripting vulnerability when performing an edit function to existing elements. | Solarwinds_platform | 6.1 | ||
| 2024-10-16 | CVE-2024-45710 | SolarWinds Platform is susceptible to an Uncontrolled Search Path Element Local Privilege Escalation vulnerability. This requires a low privilege account and local access to the affected node machine. | Solarwinds_platform | 7.8 |