Vulnerabilities > Solarwinds
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-02-15 | CVE-2023-40057 | Deserialization of Untrusted Data vulnerability in Solarwinds Access Rights Manager The SolarWinds Access Rights Manager was found to be susceptible to a Remote Code Execution Vulnerability. | 9.0 |
2024-02-15 | CVE-2024-23476 | Path Traversal vulnerability in Solarwinds Access Rights Manager The SolarWinds Access Rights Manager (ARM) was found to be susceptible to a Directory Traversal Remote Code Execution Vulnerability. | 9.6 |
2024-02-15 | CVE-2024-23477 | Path Traversal vulnerability in Solarwinds Access Rights Manager The SolarWinds Access Rights Manager (ARM) was found to be susceptible to a Directory Traversal Remote Code Execution Vulnerability. | 9.6 |
2024-02-15 | CVE-2024-23478 | Deserialization of Untrusted Data vulnerability in Solarwinds Access Rights Manager SolarWinds Access Rights Manager (ARM) was found to be susceptible to a Remote Code Execution Vulnerability. | 8.0 |
2024-02-15 | CVE-2024-23479 | Path Traversal vulnerability in Solarwinds Access Rights Manager SolarWinds Access Rights Manager (ARM) was found to be susceptible to a Directory Traversal Remote Code Execution Vulnerability. | 9.6 |
2024-02-06 | CVE-2023-35188 | SQL Injection vulnerability in Solarwinds Platform SQL Injection Remote Code Execution Vulnerability was found using a create statement in the SolarWinds Platform. | 8.8 |
2024-02-06 | CVE-2023-50395 | SQL Injection vulnerability in Solarwinds Platform SQL Injection Remote Code Execution Vulnerability was found using an update statement in the SolarWinds Platform. | 8.8 |
2023-12-21 | CVE-2023-40058 | Unspecified vulnerability in Solarwinds Access Rights Manager Sensitive data was added to our public-facing knowledgebase that, if exploited, could be used to access components of Access Rights Manager (ARM) if the threat actor is in the same environment. low complexity solarwinds | 6.5 |
2023-12-06 | CVE-2023-40053 | Unspecified vulnerability in Solarwinds Serv-U 15.4.0 A vulnerability has been identified within Serv-U 15.4 that allows an authenticated actor to insert content on the file share function feature of Serv-U, which could be used maliciously. | 5.0 |
2023-11-28 | CVE-2023-40056 | SQL Injection vulnerability in Solarwinds Platform SQL Injection Remote Code Vulnerability was found in the SolarWinds Platform. | 8.8 |