CVE-2020-27870

This vulnerability allows remote attackers to disclose sensitive information on affected installations of SolarWinds Orion Platform 2020.2.1. Authentication is required to exploit this vulnerability. The specific flaw exists within ExportToPDF.aspx. The issue results from the lack of proper...

CVE-2020-27870

creationtimestamp| type| source ---|---|--- 2021-02-13 20:36:37+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/2696 2023-09-17 18:22:56+00:00| seen| https://t.me/cibsecurity/23424...

CVE-2020-27870

This vulnerability allows remote attackers to disclose sensitive information on affected installations of SolarWinds Orion Platform 2020.2.1. Authentication is required to exploit this vulnerability. The specific flaw exists within ExportToPDF.aspx. The issue results from the lack of proper...

CVE-2020-27870

SolarWinds Orion Platform 2020.2.1 is affected by a path-traversal vulnerability in ExportToPDF.aspx. The issue stems from insufficient validation of a user-supplied path before file operations, enabling an authenticated attacker to disclose information in the SYSTEM context. Mitigation: SolarWin...

Vulnerabilities fixed in SolarWinds Network Performance Monitor

Vulnerabilities have been fixed in SolarWinds Network Performance Monitor. The vulnerabilities allow a malicious party to execute attacks that result in the following categories of damage: Remote code execution Administrator/Root privileges. Access to sensitive data Increased user privileges To...

SolarWinds Orion Platform < 2020.2.1 HF2 Multiple Vulnerabilities

According to its self-reported version number, the version of SolarWinds Orion Platform is prior to 2020.2.1 hot fix 2. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability exists in the ExecuteVBScript method due to improper validation of a user-supplie...