Vulnerabilities > Solarwinds > Solarwinds Platform > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-10-16 CVE-2024-45715 Cross-site Scripting vulnerability in Solarwinds Platform
The SolarWinds Platform was susceptible to a Cross-Site Scripting vulnerability when performing an edit function to existing elements.
network
low complexity
solarwinds CWE-79
6.1
6.1
2024-06-04 CVE-2024-29004 Cross-site Scripting vulnerability in Solarwinds Platform
The SolarWinds Platform was determined to be affected by a stored cross-site scripting vulnerability affecting the web console.
network
low complexity
solarwinds CWE-79
4.8
4.8
2023-07-26 CVE-2023-3622 Improper Authentication vulnerability in Solarwinds Platform
Access Control Bypass Vulnerability in the SolarWinds Platform that allows an underprivileged user to read arbitrary resource
network
low complexity
solarwinds CWE-287
4.3
4.3
2023-04-25 CVE-2023-23839 Unspecified vulnerability in Solarwinds Platform
The SolarWinds Platform was susceptible to the Exposure of Sensitive Information Vulnerability.
network
low complexity
solarwinds
6.5
6.5
2022-12-19 CVE-2022-47512 Cleartext Storage of Sensitive Information vulnerability in Solarwinds Platform 2022.4.0
Sensitive information was stored in plain text in a file that is accessible by a user with a local account in Hybrid Cloud Observability (HCO)/ SolarWinds Platform 2022.4.
local
low complexity
solarwinds CWE-312
5.5
5.5
2022-09-30 CVE-2022-36965 Cross-site Scripting vulnerability in Solarwinds Platform 2022.2.0
Insufficient sanitization of inputs in QoE application input field could lead to stored and Dom based XSS attack.
network
low complexity
solarwinds CWE-79
6.1
6.1