Lucene search

CVE-2024-23473

🗓️ 14 May 2024 14:29:59Reported by SolarWindsType

cve🔗 web.nvd.nist.gov📰️ 20 Media mentions👁 14 Views

The SolarWinds Access Rights Manager has hard-coded credentials vulnerability allowing access to RabbitMQ management consol

Reporter	Title	Published	Views	Family All 6
NVD	CVE-2024-23473	14 May 202414:59	–	nvd
Zero Day Initiative	SolarWinds Access Rights Manager Hard-Coded Credentials Authentication Bypass Vulnerability	15 May 202400:00	–	zdi
CNVD	SolarWinds Access Rights Manager Trust Management Issue Vulnerability	20 May 202400:00	–	cnvd
Cvelist	CVE-2024-23473 SolarWinds Access Rights Manager (ARM) Hard-Coded Credentials Authentication Bypass Vulnerability	9 May 202412:43	–	cvelist
Vulnrichment	CVE-2024-23473 SolarWinds Access Rights Manager (ARM) Hard-Coded Credentials Authentication Bypass Vulnerability	9 May 202412:43	–	vulnrichment
Tenable Nessus	SolarWinds ARM < 23.2.4 (2023-2-4_CVE-2024-23473)	17 May 202400:00	–	nessus

Nvd

Node

solarwinds access_rights_managerRange<2023.2.4

[
  {
    "defaultStatus": "unaffected",
    "product": "Access Rights Manager",
    "vendor": "SolarWinds",
    "versions": [
      {
        "lessThanOrEqual": "2023.2.3",
        "status": "affected",
        "version": "previous versions",
        "versionType": "2023.2.3"
      }
    ]
  }
]

Source	Link
solarwinds	www.solarwinds.com/trust-center/security-advisories/CVE-2024-23473
documentation	www.documentation.solarwinds.com/en/success_center/arm/content/release_notes/arm_2023-2-4_release_notes.htm

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

14 May 2024 14:59Current

8.5High risk

Vulners AI Score8.5

CVSS38.6 - 9.8

EPSS0.00235

SSVC

CWE-798