Vulnerabilities > Solarwinds

DATE CVE VULNERABILITY TITLE RISK
2023-09-13 CVE-2023-23840 Incorrect Comparison vulnerability in Solarwinds Orion Platform
The SolarWinds Platform was susceptible to the Incorrect Comparison Vulnerability.
network
low complexity
solarwinds CWE-697
7.2
7.2
2023-09-13 CVE-2023-23845 Incorrect Comparison vulnerability in Solarwinds Orion Platform
The SolarWinds Platform was susceptible to the Incorrect Comparison Vulnerability.
network
low complexity
solarwinds CWE-697
7.2
7.2
2023-09-07 CVE-2023-40060 Improper Access Control vulnerability in Solarwinds Serv-U 15.4.0
A vulnerability has been identified within Serv-U 15.4 and 15.4 Hotfix 1 that, if exploited, allows an actor to bypass multi-factor/two-factor authentication.
network
low complexity
solarwinds CWE-284
7.2
7.2
2023-08-11 CVE-2023-35179 Improper Access Control vulnerability in Solarwinds Serv-U 15.4.0
A vulnerability has been identified within Serv-U 15.4 that, if exploited, allows an actor to bypass multi-factor/two-factor authentication.
network
low complexity
solarwinds CWE-284
7.2
7.2
2023-07-26 CVE-2023-23842 Path Traversal vulnerability in Solarwinds Network Configuration Monitor
The SolarWinds Network Configuration Manager was susceptible to the Directory Traversal Vulnerability.
network
low complexity
solarwinds CWE-22
7.2
7.2
2023-07-26 CVE-2023-33229 Code Injection vulnerability in Solarwinds Platform
The SolarWinds Platform was susceptible to the Incorrect Input Neutralization Vulnerability.
network
low complexity
solarwinds CWE-94
3.5
3.5
2023-07-26 CVE-2023-3622 Improper Authentication vulnerability in Solarwinds Platform
Access Control Bypass Vulnerability in the SolarWinds Platform that allows an underprivileged user to read arbitrary resource
network
low complexity
solarwinds CWE-287
4.3
4.3
2023-07-26 CVE-2023-23843 Incorrect Comparison vulnerability in Solarwinds Platform
The SolarWinds Platform was susceptible to the Incorrect Comparison Vulnerability.
network
low complexity
solarwinds CWE-697
7.2
7.2
2023-07-26 CVE-2023-23844 Incorrect Comparison vulnerability in Solarwinds Platform
The SolarWinds Platform was susceptible to the Incorrect Comparison Vulnerability.
network
low complexity
solarwinds CWE-697
7.2
7.2
2023-07-26 CVE-2023-33224 Unspecified vulnerability in Solarwinds Platform
The SolarWinds Platform was susceptible to the Incorrect Behavior Order Vulnerability.
network
low complexity
solarwinds
7.2
7.2