Vulnerabilities > Solarwinds > Dameware Mini Remote Control > Critical

DATE CVE VULNERABILITY TITLE RISK
2021-07-13 CVE-2021-31217 Incorrect Default Permissions vulnerability in Solarwinds Dameware Mini Remote Control 12.0.1.200
In SolarWinds DameWare Mini Remote Control Server 12.0.1.200, insecure file permissions allow file deletion as SYSTEM.
network
low complexity
solarwinds CWE-276
critical
 9.4
9.4
2019-10-08 CVE-2019-3980 Improper Input Validation vulnerability in Solarwinds Dameware Mini Remote Control 12.1.0.89
The Solarwinds Dameware Mini Remote Client agent v12.1.0.89 supports smart card authentication which can allow a user to upload an executable to be executed on the DWRCS.exe host.
network
low complexity
solarwinds CWE-20
critical
 10.0
10