Lucene search
+L

243 matches found

attackerkb
attackerkb
added 2025/02/11 8:15 a.m.2 views

CVE-2024-52612

SolarWinds Platform is vulnerable to a reflected cross-site scripting vulnerability. This was caused by an insufficient sanitation of input parameters. This vulnerability requires authentication by a high- privileged account to be exploitable...

6.8CVSS5.7AI score0.00524EPSS
Exploits0References3
osv
osv
added 2025/02/11 8:15 a.m.4 views

CVE-2024-52612

SolarWinds Platform is vulnerable to a reflected cross-site scripting vulnerability. This was caused by an insufficient sanitation of input parameters. This vulnerability requires authentication by a high- privileged account to be exploitable...

4.8CVSS5.6AI score0.00524EPSS
Exploits0References2
osv
osv
added 2025/02/11 8:15 a.m.7 views

CVE-2024-52606

SolarWinds Platform is affected by server-side request forgery vulnerability. Proper input sanitation was not applied allowing for the possibility of a malicious web request...

9.8CVSS5.8AI score0.02377EPSS
Exploits0References2
nvd
nvd
added 2025/02/11 8:15 a.m.23 views

CVE-2024-52611

The SolarWinds Platform is vulnerable to an information disclosure vulnerability through an error message. While the data does not provide anything sensitive, the information could assist an attacker in other malicious actions...

3.5CVSS0.00346EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2025/02/11 7:25 a.m.11 views

CVE-2024-52611 SolarWinds Platform Information Disclosure Vulnerability

The SolarWinds Platform is vulnerable to an information disclosure vulnerability through an error message. While the data does not provide anything sensitive, the information could assist an attacker in other malicious actions...

3.5CVSS4AI score0.00346EPSS
Exploits0References2
cve
cve
added 2025/02/11 7:25 a.m.53 views

CVE-2024-52611

The connected sources provide concrete details for CVE-2024-52611: SolarWinds Platform is vulnerable to information disclosure via error messages. Affected software is SolarWinds Platform versions 2024.4.1 and earlier. The root cause relates to how error messages disclose potentially useful infor...

3.5CVSS3.7AI score0.00346EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2025/02/11 7:25 a.m.21 views

CVE-2024-52611 SolarWinds Platform Information Disclosure Vulnerability

The SolarWinds Platform is vulnerable to an information disclosure vulnerability through an error message. While the data does not provide anything sensitive, the information could assist an attacker in other malicious actions...

3.5CVSS0.00346EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2025/02/11 7:21 a.m.6 views

CVE-2024-52612 SolarWinds Platform Reflected Cross-Site Scripting Vulnerability

SolarWinds Platform is vulnerable to a reflected cross-site scripting vulnerability. This was caused by an insufficient sanitation of input parameters. This vulnerability requires authentication by a high- privileged account to be exploitable...

6.8CVSS6.4AI score0.00524EPSS
Exploits0References2
cve
cve
added 2025/02/11 7:21 a.m.52 views

CVE-2024-52612

Summary of CVE-2024-52612 (SolarWinds Platform): A reflected cross-site scripting vulnerability exists due to insufficient sanitation of input parameters. Exploitation requires authentication by a high-privileged account (and user interaction is typically required per NVD metrics), with impact on...

6.8CVSS6.4AI score0.00524EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2025/02/11 7:21 a.m.25 views

CVE-2024-52612 SolarWinds Platform Reflected Cross-Site Scripting Vulnerability

SolarWinds Platform is vulnerable to a reflected cross-site scripting vulnerability. This was caused by an insufficient sanitation of input parameters. This vulnerability requires authentication by a high- privileged account to be exploitable...

6.8CVSS0.00524EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2025/02/11 7:17 a.m.13 views

CVE-2024-52606 SolarWinds Platform Server-Side Request Forgery Vulnerability

SolarWinds Platform is affected by server-side request forgery vulnerability. Proper input sanitation was not applied allowing for the possibility of a malicious web request...

3.5CVSS4.5AI score0.02377EPSS
Exploits0References2
cvelist
cvelist
added 2025/02/11 7:17 a.m.25 views

CVE-2024-52606 SolarWinds Platform Server-Side Request Forgery Vulnerability

SolarWinds Platform is affected by server-side request forgery vulnerability. Proper input sanitation was not applied allowing for the possibility of a malicious web request...

3.5CVSS0.02377EPSS
Exploits0References2
cve
cve
added 2025/02/11 7:17 a.m.58 views

CVE-2024-52606

CVE-2024-52606 – SolarWinds Platform SSRF : A server-side request forgery vulnerability exists due to insufficient input sanitation in SolarWinds Platform. Public sources in connected documents describe the flaw affecting SolarWinds Platform and indicate an SSRF condition that could allow a malic...

9.8CVSS4.1AI score0.02377EPSS
Exploits0References2Affected Software1
cnnvd
cnnvd
added 2025/02/11 12:0 a.m.3 views

SolarWinds Platform 安全漏洞

SolarWinds Platform is a unified monitoring, observability, and service management platform from SolarWinds USA. A security vulnerability exists in SolarWinds Platform versions prior to 2025.1 that stems from vulnerability to information disclosure via error messages...

3.5CVSS6AI score0.00346EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2025/02/11 12:0 a.m.6 views

PT-2025-6168 · Solarwinds · Solarwinds Platform

Name of the Vulnerable Software and Affected Versions: SolarWinds Platform versions 2024.4.1 and previous versions Description: The SolarWinds Platform is vulnerable to an information disclosure vulnerability through an error message. Although the disclosed data does not contain sensitive...

3.5CVSS6.6AI score0.00346EPSS
Exploits0References7
cnnvd
cnnvd
added 2025/02/11 12:0 a.m.4 views

SolarWinds Platform 代码问题漏洞

SolarWinds Platform is a unified monitoring, observability, and service management platform from SolarWinds USA. A code issue vulnerability exists in versions of SolarWinds Platform prior to 2025.1 that stems from a failure to apply proper input cleanup, which could lead to the possibility of...

9.8CVSS6.7AI score0.02377EPSS
Exploits0References2
cnnvd
cnnvd
added 2025/02/11 12:0 a.m.5 views

SolarWinds Platform 安全漏洞

SolarWinds Platform is a unified monitoring, observability, and service management platform from SolarWinds USA. A security vulnerability exists in SolarWinds Platform versions prior to 2025.1 that stems from insufficient input parameter cleanup and is susceptible to a reflective cross-site...

6.8CVSS6AI score0.00524EPSS
Exploits0References2
nessus
nessus
added 2025/02/11 12:0 a.m.11 views

SolarWinds Platform 2024.4.0 < 2025.1 Multiple Vulnerabilities XSS

The version of SolarWinds Platform installed on the remote host is prior to 2025.1. It is, therefore, affected by multiple vulnerabilities as referenced in the solarwindsplatform20251 advisory. - The SolarWinds Platform is vulnerable to an information disclosure vulnerability through an error...

9.8CVSS5.3AI score0.02377EPSS
Exploits0References6
redhatcve
redhatcve
added 2025/02/05 8:11 a.m.8 views

CVE-2024-29004

The SolarWinds Platform was determined to be affected by a stored cross-site scripting vulnerability affecting the web console. A high-privileged user and user interaction is required to exploit this vulnerability...

7.1CVSS6AI score0.0032EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/02/05 8:8 a.m.9 views

CVE-2024-29000

The SolarWinds Platform was determined to be affected by a reflected cross-site scripting vulnerability affecting the web console. A high-privileged user and user interaction is required to exploit this vulnerability...

7.9CVSS6.2AI score0.00463EPSS
Exploits0References1
Rows per page
Query Builder