Vulnerabilities > Solarwinds > Patch Manager

DATE CVE VULNERABILITY TITLE RISK
2021-09-08 CVE-2021-35217 Deserialization of Untrusted Data vulnerability in Solarwinds Patch Manager
Insecure Deseralization of untrusted data remote code execution vulnerability was discovered in Patch Manager Orion Platform Integration module and reported to us by ZDI.
network
low complexity
solarwinds CWE-502
6.5
2021-09-01 CVE-2021-35216 Deserialization of Untrusted Data vulnerability in Solarwinds Patch Manager
Insecure Deserialization of untrusted data remote code execution vulnerability was discovered in Patch Manager Orion Platform Integration module.
network
low complexity
solarwinds CWE-502
critical
9.0
2021-03-29 CVE-2021-27240 Deserialization of Untrusted Data vulnerability in Solarwinds Patch Manager 2020.2.1
This vulnerability allows local attackers to escalate privileges on affected installations of SolarWinds Patch Manager 2020.2.1.
local
low complexity
solarwinds CWE-502
7.2