6 matches found
CVE-2020-27869
This vulnerability allows remote attackers to escalate privileges on affected installations of SolarWinds Network Performance Monitor 2020 HF1, NPM: 2020.2. Authentication is required to exploit this vulnerability. The specific flaw exists within the WriteToFile method. The issue results from the...
CVE-2020-27869
This vulnerability allows remote attackers to escalate privileges on affected installations of SolarWinds Network Performance Monitor 2020 HF1, NPM: 2020.2. Authentication is required to exploit this vulnerability. The specific flaw exists within the WriteToFile method. The issue results from the...
CVE-2020-27869
SolarWinds Network Performance Monitor (NPM) 2020 HF1 / 2020.2 is affected by CVE-2020-27869 due to a WriteToFile SQL injection in a user-supplied string used to build queries, enabling privilege escalation and Admin password reset with network access and low privileges. The issue is confirmed ac...
CVE-2020-27869
This vulnerability allows remote attackers to escalate privileges on affected installations of SolarWinds Network Performance Monitor 2020 HF1, NPM: 2020.2. Authentication is required to exploit this vulnerability. The specific flaw exists within the WriteToFile method. The issue results from the...
Vulnerabilities fixed in SolarWinds Network Performance Monitor
Vulnerabilities have been fixed in SolarWinds Network Performance Monitor. The vulnerabilities allow a malicious party to execute attacks that result in the following categories of damage: Remote code execution Administrator/Root privileges. Access to sensitive data Increased user privileges To...
SolarWinds Orion Platform < 2020.2.1 HF2 Multiple Vulnerabilities
According to its self-reported version number, the version of SolarWinds Orion Platform is prior to 2020.2.1 hot fix 2. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability exists in the ExecuteVBScript method due to improper validation of a user-supplie...