Design/Logic Flaw

2020-06-0721:15:00

PRIOn knowledge base

www.prio-n.com

7.2 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

SolarWinds Advanced Monitoring Agent before 10.8.9 allows local users to gain privileges via a Trojan horse .exe file, because everyone can write to a certain .exe file.

CPENameOperatorVersion
advanced_monitoring_agentlt10.8.9

CPE	Name	Operator	Version
	advanced_monitoring_agent	lt	10.8.9

References

hansesecure.de/2020/06/vulnerability-in-monitoring-software/?lang=en