Vulnerabilities > Solarwinds > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-12-04 | CVE-2024-45717 | Cross-site Scripting vulnerability in Solarwinds Platform The SolarWinds Platform was susceptible to a XSS vulnerability that affects the search and node information section of the user interface. | 4.8 |
| 2024-10-16 | CVE-2024-45714 | Cross-site Scripting vulnerability in Solarwinds Serv-U Application is vulnerable to Cross Site Scripting (XSS) an authenticated attacker with users’ permissions can modify a variable with a payload. | 4.1 |
| 2024-10-16 | CVE-2024-45715 | Cross-site Scripting vulnerability in Solarwinds Platform The SolarWinds Platform was susceptible to a Cross-Site Scripting vulnerability when performing an edit function to existing elements. | 6.1 |
| 2024-06-04 | CVE-2024-29004 | Unspecified vulnerability in Solarwinds Platform The SolarWinds Platform was determined to be affected by a stored cross-site scripting vulnerability affecting the web console. | 4.8 |
| 2024-05-20 | CVE-2024-29000 | Unspecified vulnerability in Solarwinds Platform The SolarWinds Platform was determined to be affected by a reflected cross-site scripting vulnerability affecting the web console. | 4.8 |
| 2024-04-18 | CVE-2024-29003 | Unspecified vulnerability in Solarwinds Platform The SolarWinds Platform was susceptible to a XSS vulnerability that affects the maps section of the user interface. | 5.4 |
| 2024-04-18 | CVE-2024-28076 | Unspecified vulnerability in Solarwinds Platform The SolarWinds Platform was susceptible to a Arbitrary Open Redirection Vulnerability. | 4.7 |
| 2023-11-01 | CVE-2023-33228 | Unspecified vulnerability in Solarwinds Network Configuration Manager The SolarWinds Network Configuration Manager was susceptible to the Exposure of Sensitive Information Vulnerability. | 4.9 |
| 2023-07-18 | CVE-2023-33231 | Cross-site Scripting vulnerability in Solarwinds Database Performance Analyzer XSS attack was possible in DPA 2023.2 due to insufficient input validation | 6.1 |
| 2023-04-25 | CVE-2023-23839 | Unspecified vulnerability in Solarwinds Platform The SolarWinds Platform was susceptible to the Exposure of Sensitive Information Vulnerability. | 6.5 |