Vulnerabilities in SolarWinds
191 resultsCVE-2023-33226HIGHDirectory Traversal Remote Code Execution VulnerabilityEPSS 1.8%CVE-2021-35214MEDIUMSession Management VulnerabilityEPSS 1.8%CVE-2021-35212HIGHBlind SQL injection VulnerabilityEPSS 1.6%CVE-2023-50395HIGHSQL Injection Remote Code Execution VulnerabilityEPSS 1.6%CVE-2023-35188HIGHSQL Injection Remote Code Execution VulnerabilityEPSS 1.5%CVE-2024-23474HIGHSolarWinds Access Rights Manager (ARM) deleteTransferFile Directory Traversal Arbitrary File Deletion and Information Disclosure VulnerabilityEPSS 1.5%CVE-2023-35184HIGHSolarWinds Access Rights Manager Deserialization of Untrusted Data Remote Code Execution VulnerabilityEPSS 1.4%CVE-2024-23471CRITICALSolarWinds Access Rights Manager (ARM) CreateFile Directory Traversal Remote Code Execution VulnerabilityEPSS 1.3%CVE-2023-23838MEDIUMDirectory traversal and file enumeration vulnerability: Database Performance Analyzer (DPA) 2023.1EPSS 1.3%CVE-2021-35235MEDIUMASP.NET Debug Feature EnabledEPSS 1.2%CVE-2021-32076MEDIUMAccess Restriction bypass vulnerability via referrer spoof - Business Logic BypassEPSS 1.2%CVE-2024-23470CRITICALSolarWinds Access Rights Manager (ARM) UserScriptHumster Exposed Dangerous Method Remote Command Execution VulnerabilityEPSS 1.2%CVE-2021-35245HIGHBroken Access Control Vulnerability for SolarWinds Serv-UEPSS 1.2%CVE-2023-35185MEDIUMSolarWinds Access Rights Manager OpenFile Directory Traversal Remote Code Execution VulnerabilityEPSS 1.1%CVE-2024-28073HIGHSolarWinds Serv-U Directory Traversal Remote Code Execution Vulnerability EPSS 1.1%CVE-2021-27277HIGHThis vulnerability allows local attackers to escalate privileges on affected installations of SolarWinds Orion Virtual Infrastructure MonitoEPSS 1.1%CVE-2023-23839MEDIUMSolarWinds Platform Exposure of Sensitive Information VulnerabilityEPSS 1.1%CVE-2021-35240MEDIUMStored XSS via Help Server settingsEPSS 1.1%CVE-2024-23473HIGHSolarWinds Access Rights Manager (ARM) Hard-Coded Credentials Authentication Bypass Vulnerability EPSS 1.1%CVE-2021-35238MEDIUMStored XSS through URL POST parameter in CreateExternalWebsite VulnerabilityEPSS 1.1%