Vulnerabilities > Solarwinds > Orion Platform > 2022.2.0

DATE CVE VULNERABILITY TITLE RISK
2023-09-13 CVE-2023-23840 Incorrect Comparison vulnerability in Solarwinds Orion Platform
The SolarWinds Platform was susceptible to the Incorrect Comparison Vulnerability.
network
low complexity
solarwinds CWE-697
7.2
7.2
2023-09-13 CVE-2023-23845 Incorrect Comparison vulnerability in Solarwinds Orion Platform
The SolarWinds Platform was susceptible to the Incorrect Comparison Vulnerability.
network
low complexity
solarwinds CWE-697
7.2
7.2
2023-04-21 CVE-2022-36963 Code Injection vulnerability in Solarwinds Orion Platform
The SolarWinds Platform was susceptible to the Command Injection Vulnerability.
network
low complexity
solarwinds CWE-94
7.2
7.2
2023-04-21 CVE-2022-47505 Improper Privilege Management vulnerability in Solarwinds Orion Platform
The SolarWinds Platform was susceptible to the Local Privilege Escalation Vulnerability.
local
low complexity
solarwinds CWE-269
7.8
7.8
2023-04-21 CVE-2022-47509 Cross-site Scripting vulnerability in Solarwinds Orion Platform
The SolarWinds Platform was susceptible to the Incorrect Input Neutralization Vulnerability.
network
low complexity
solarwinds CWE-79
6.1
6.1
2022-09-30 CVE-2022-36961 SQL Injection vulnerability in Solarwinds Orion Platform
A vulnerable component of Orion Platform was vulnerable to SQL Injection, an authenticated attacker could leverage this for privilege escalation or remote code execution.
network
low complexity
solarwinds CWE-89
8.8
8.8