Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 3:0 p.m.11 views

CVE-2020-27869

This vulnerability allows remote attackers to escalate privileges on affected installations of SolarWinds Network Performance Monitor 2020 HF1, NPM: 2020.2. Authentication is required to exploit this vulnerability. The specific flaw exists within the WriteToFile method. The issue results from the...

9CVSS7.5AI score0.05091EPSS
Exploits0
NVD
NVD
added 2021/02/12 12:15 a.m.14 views

CVE-2020-27869

This vulnerability allows remote attackers to escalate privileges on affected installations of SolarWinds Network Performance Monitor 2020 HF1, NPM: 2020.2. Authentication is required to exploit this vulnerability. The specific flaw exists within the WriteToFile method. The issue results from the...

9CVSS0.05091EPSS
Exploits0References1
CVE
CVE
added 2021/02/11 11:35 p.m.116 views

CVE-2020-27869

SolarWinds Network Performance Monitor (NPM) 2020 HF1 / 2020.2 is affected by CVE-2020-27869 due to a WriteToFile SQL injection in a user-supplied string used to build queries, enabling privilege escalation and Admin password reset with network access and low privileges. The issue is confirmed ac...

9CVSS9.1AI score0.05091EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/02/11 11:35 p.m.16 views

CVE-2020-27869

This vulnerability allows remote attackers to escalate privileges on affected installations of SolarWinds Network Performance Monitor 2020 HF1, NPM: 2020.2. Authentication is required to exploit this vulnerability. The specific flaw exists within the WriteToFile method. The issue results from the...

8.8CVSS9.1AI score0.05091EPSS
Exploits0References1
NCSC
NCSC
added 2021/01/15 12:0 a.m.5 views

Vulnerabilities fixed in SolarWinds Network Performance Monitor

Vulnerabilities have been fixed in SolarWinds Network Performance Monitor. The vulnerabilities allow a malicious party to execute attacks that result in the following categories of damage: Remote code execution Administrator/Root privileges. Access to sensitive data Increased user privileges To...

9CVSS7.4AI score0.9039EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/12/18 12:0 a.m.339 views

SolarWinds Orion Platform < 2020.2.1 HF2 Multiple Vulnerabilities

According to its self-reported version number, the version of SolarWinds Orion Platform is prior to 2020.2.1 hot fix 2. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability exists in the ExecuteVBScript method due to improper validation of a user-supplie...

9CVSS8.1AI score0.9039EPSS
Exploits4References10
Rows per page
Query Builder