CVE-2021-35244

Unrestricted File Upload Causing Remote Code Execution: Orion Platform 2020.2.6

CVSS 6.8 MEDIUMEPSS 5.8%

Vexday Risk Score

13Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS 6.8EPSS 5.8%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

20 Dec 2021Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

The "Log alert to a file" action within action management enables any Orion Platform user with Orion alert management rights to write to any file. An attacker with Orion alert management rights could use this vulnerability to perform an unrestricted file upload causing a remote code execution.

CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:L/A:L

Affected products

SolarWinds · Orion Platform

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://documentation.solarwinds.com/en/Success_Center/orionplatform/content/core-secure-configuration.htm https://support.solarwinds.com/SuccessCenter/s/article/Orion-Platform-2020-2-6-Hotfix-3?language=en_US https://www.solarwinds.com/trust-center/security-advisories/cve-2021-35242 https://www.zerodayinitiative.com/advisories/ZDI-22-375/