The vulnerability of the Solarwinds Information Service (SWIS) software’s Network Configuration Manager (NCM) allows a hacker to expose user credentials.

The vulnerability of the Solarwinds Information Service SWIS software’s Network Configuration Manager NCM lies in the ability to execute commands remotely. Exploiting this vulnerability could allow a malicious actor to gain access to user credentials...

CVE-2021-35226

An entity in Network Configuration Manager product is misconfigured and exposing password field to Solarwinds Information Service SWIS. Exposed credentials are encrypted and require authenticated access with an NCM role...