← voltar
CVE-2023-33224

SolarWinds Platform Incorrect Behavior Order Vulnerability

CVSS 7.2 HIGHEPSS 2.8%CWE-696
The SolarWinds Platform was susceptible to the Incorrect Behavior Order Vulnerability. This vulnerability allows users with administrative access to SolarWinds Web Console to execute arbitrary commands with NETWORK SERVICE privileges.
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Produtos afetados
SolarWinds · SolarWinds Platform

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://documentation.solarwinds.com/en/success_center/orionplatform/content/release_notes/solarwinds_platform_2023-3_release_notes.htmhttps://www.solarwinds.com/trust-center/security-advisories/cve-2023-33224