Vulnerabilities > Solarwinds > Solarwinds Platform

DATE CVE VULNERABILITY TITLE RISK
2024-10-16 CVE-2024-45710 Uncontrolled Search Path Element vulnerability in Solarwinds Platform
SolarWinds Platform is susceptible to an Uncontrolled Search Path Element Local Privilege Escalation vulnerability.
local
low complexity
solarwinds CWE-427
7.8
2024-10-16 CVE-2024-45715 Cross-site Scripting vulnerability in Solarwinds Platform
The SolarWinds Platform was susceptible to a Cross-Site Scripting vulnerability when performing an edit function to existing elements.
network
low complexity
solarwinds CWE-79
6.1
2024-06-04 CVE-2024-28996 Unspecified vulnerability in Solarwinds Platform
The SolarWinds Platform was determined to be affected by a SWQL Injection Vulnerability.
network
high complexity
solarwinds
8.1
2024-06-04 CVE-2024-28999 Race Condition vulnerability in Solarwinds Platform
The SolarWinds Platform was determined to be affected by a Race Condition Vulnerability affecting the web console.
network
high complexity
solarwinds CWE-362
8.1
2024-06-04 CVE-2024-29004 Unspecified vulnerability in Solarwinds Platform
The SolarWinds Platform was determined to be affected by a stored cross-site scripting vulnerability affecting the web console.
network
low complexity
solarwinds
4.8
2024-02-06 CVE-2023-35188 Unspecified vulnerability in Solarwinds Platform
SQL Injection Remote Code Execution Vulnerability was found using a create statement in the SolarWinds Platform.
network
low complexity
solarwinds
8.8
2024-02-06 CVE-2023-50395 Unspecified vulnerability in Solarwinds Platform
SQL Injection Remote Code Execution Vulnerability was found using an update statement in the SolarWinds Platform.
network
low complexity
solarwinds
8.8
2023-11-28 CVE-2023-40056 Unspecified vulnerability in Solarwinds Platform
SQL Injection Remote Code Vulnerability was found in the SolarWinds Platform.
network
low complexity
solarwinds
8.8
2023-11-01 CVE-2023-40062 Unspecified vulnerability in Solarwinds Platform
SolarWinds Platform Incomplete List of Disallowed Inputs Remote Code Execution Vulnerability.
network
low complexity
solarwinds
8.8
2023-07-26 CVE-2023-23843 Incorrect Comparison vulnerability in Solarwinds Platform
The SolarWinds Platform was susceptible to the Incorrect Comparison Vulnerability.
network
low complexity
solarwinds CWE-697
7.2