← back
CVE-2023-33224

SolarWinds Platform Incorrect Behavior Order Vulnerability

CVSS 7.2 HIGHEPSS 2.8%CWE-696
The SolarWinds Platform was susceptible to the Incorrect Behavior Order Vulnerability. This vulnerability allows users with administrative access to SolarWinds Web Console to execute arbitrary commands with NETWORK SERVICE privileges.
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected products
SolarWinds · SolarWinds Platform

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://documentation.solarwinds.com/en/success_center/orionplatform/content/release_notes/solarwinds_platform_2023-3_release_notes.htmhttps://www.solarwinds.com/trust-center/security-advisories/cve-2023-33224