SolarWindsCVELIST:CVE-2021-35244CVE-2021-35244 Unrestricted File Upload Causing Remote Code Execution: Orion Platform 2020.2.6
6.8 Medium
CVSS3
Attack Vector
ADJACENT
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:L/A:L
0.003 Low
EPSS
Percentile
71.6%
The βLog alert to a fileβ action within action management enables any Orion Platform user with Orion alert management rights to write to any file. An attacker with Orion alert management rights could use this vulnerability to perform an unrestricted file upload causing a remote code execution.
CNA Affected
[
{
"platforms": [
"Windows "
],
"product": "Orion Platform ",
"vendor": "SolarWinds",
"versions": [
{
"lessThan": " 2020.2.6 HF 3 ",
"status": "affected",
"version": "2020.2.6 HF 2 and previous versions ",
"versionType": "custom"
}
]
}
]References
documentation.solarwinds.com/en/Success_Center/orionplatform/content/core-secure-configuration.htm
support.solarwinds.com/SuccessCenter/s/article/Orion-Platform-2020-2-6-Hotfix-3?language=en_US
www.solarwinds.com/trust-center/security-advisories/cve-2021-35242
www.zerodayinitiative.com/advisories/ZDI-22-375/
Related
6.8 Medium
CVSS3
Attack Vector
ADJACENT
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:L/A:L
0.003 Low
EPSS
Percentile
71.6%