Vulnerabilities > CVE-2022-47508 - Unspecified vulnerability in Solarwinds Server and Application Monitor 2022.4

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

solarwinds

NVD

Published: 2023-02-15

Updated: 2023-02-24

Summary

Customers who had configured their polling to occur via Kerberos did not expect NTLM Traffic on their environment, but since we were querying for data via IP address this prevented us from utilizing Kerberos.

Vulnerable Configurations

Part	Description	Count
Application	Solarwinds Solarwinds Server AND Application Monitor 2022.4	1

References

https://documentation.solarwinds.com/en/success_center/sam/content/release_notes/sam_2023-1_release_notes.htm
https://www.solarwinds.com/trust-center/security-advisories/CVE-2022-47508