243 matches found
CVE-2024-29003
The SolarWinds Platform was susceptible to a XSS vulnerability that affects the maps section of the user interface. This vulnerability requires authentication and requires user interaction...
CVE-2024-29001
A SolarWinds Platform SWQL Injection Vulnerability was identified in the user interface. This vulnerability requires authentication and user interaction to be exploited...
CVE-2024-45710
SolarWinds Platform is susceptible to an Uncontrolled Search Path Element Local Privilege Escalation vulnerability. This requires a low privilege account and local access to the affected node machine...
CVE-2024-45715
The SolarWinds Platform was susceptible to a Cross-Site Scripting vulnerability when performing an edit function to existing elements...
CVE-2024-28076
The SolarWinds Platform was susceptible to a Arbitrary Open Redirection Vulnerability. A potential attacker can redirect to different domain when using URL parameter with relative entry in the correct format...
CVE-2024-28996
The SolarWinds Platform was determined to be affected by a SWQL Injection Vulnerability. Attack complexity is high for this vulnerability...
The vulnerability of the Search/Node Information Section component in the user interface of SolarWinds Platform’s network monitoring and IT infrastructure management software allows attackers to perform cross-site scripting (XSS) attacks.
The vulnerability of the Search/Node Information Section component in the user interface of SolarWinds Platform’s network monitoring and IT infrastructure management software is related to the lack of protective measures for the website structure. Exploiting this vulnerability could allow a...
CVE-2024-45717
The SolarWinds Platform was susceptible to a XSS vulnerability that affects the search and node information section of the user interface. This vulnerability requires authentication and requires user interaction...
SolarWinds Platform 跨站脚本漏洞
SolarWinds Platform is a unified monitoring, observability, and service management platform from U.S.-based SolarWinds, Inc. A cross-site scripting vulnerability exists in SolarWinds Platform that stems from susceptibility to a cross-site scripting attack that affects the search and node...
SolarWinds Platform 2024.0 < 2024.4.1 XSS
The version of SolarWinds Platform installed on the remote host is prior to 2024.4.1. It is, therefore, affected by a vulnerability as referenced in the solarwindsplatform202441 advisory. - The SolarWinds Platform was susceptible to a XSS vulnerability that affects the search and node information...
The vulnerability in the software for network monitoring and IT infrastructure management consoles of the SolarWinds Platform allows a hacker to perform cross-site scripting attacks.
The vulnerability of the software for network monitoring and IT infrastructure management solutions developed by SolarWinds exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability could allow a malicious actor to perform cross-site scripting attack...
The vulnerability of the software for network monitoring and control of IT infrastructure on the SolarWinds Platform lies in its uncontrolled search algorithm, which allows attackers to escalate their privileges.
The vulnerability of the software for network monitoring and control of IT infrastructure on the SolarWinds Platform is related to an uncontrolled element in the search process. Exploiting this vulnerability could allow attackers to enhance their privileges...
Vulnerabilities fixed in Solarwinds Platform
Solarwinds has fixed vulnerabilities in Solarwinds Platform. An authenticated malicious person could exploit the vulnerabilities to launch a Cross-Site Scripting attack or locally increase permissions. Solarwinds has released updates to fix the vulnerabilities in Solarwinds Platform 2024.4. See...
SolarWinds Platform 2024.2.0 < 2024.4 Multiple Vulnerabilities XSS
The version of SolarWinds Platform installed on the remote host is prior to 2024.4. It is, therefore, affected by multiple vulnerabilities as referenced in the solarwindsplatform20244 advisory. - SolarWinds Platform is susceptible to an Uncontrolled Search Path Element Local Privilege Escalation...
CVE-2024-45715
The SolarWinds Platform was susceptible to a Cross-Site Scripting vulnerability when performing an edit function to existing elements...
CVE-2024-45715
The SolarWinds Platform was susceptible to a Cross-Site Scripting vulnerability when performing an edit function to existing elements...
CVE-2024-45710
SolarWinds Platform is susceptible to an Uncontrolled Search Path Element Local Privilege Escalation vulnerability. This requires a low privilege account and local access to the affected node machine...
CVE-2024-45715
The CVE-2024-45715 entry corresponds to a Cross-Site Scripting vulnerability in the SolarWinds Platform, triggered when performing an edit function on existing elements. Connected sources indicate affected versions are SolarWinds Platform prior to 2024.4 (e.g., 2024.2.0 up to before 2024.4) and d...
CVE-2024-45710
CVE-2024-45710 affects SolarWinds Platform and is described as an Uncontrolled Search Path Element Local Privilege Escalation. The vulnerability arises from an improper handling of search path elements, enabling a low-privilege user with local access to escalate privileges on the affected node. T...
SolarWinds Platform 代码问题漏洞
SolarWinds Platform is a unified monitoring, observability, and service management platform from U.S.-based SolarWinds, Inc. A code issue vulnerability exists in SolarWinds Platform versions 2024.2.1 and earlier, which stems from vulnerability to an uncontrolled local elevation of privilege...