CVE-2022-47507

SolarWinds Platform was susceptible to the Deserialization of Untrusted Data. This vulnerability allows a remote adversary with Orion admin-level account access to SolarWinds Web Console to execute arbitrary commands...

CVE-2022-47504

SolarWinds Platform was susceptible to the Deserialization of Untrusted Data. This vulnerability allows a remote adversary with Orion admin-level account access to SolarWinds Web Console to execute arbitrary commands...

Deserialization of untrusted data

SolarWinds Platform was susceptible to the Deserialization of Untrusted Data. This vulnerability allows a remote adversary with Orion admin-level account access to SolarWinds Web Console to execute arbitrary commands...

CVE-2022-38111

CVE-2022-38111 affects SolarWinds Platform with a deserialization of untrusted data vulnerability. The issue allows remote code execution when an attacker with Orion admin-level access to the Web Console can trigger deserialization via the affected component, per multiple sources. ZDI specifies t...

SolarWinds Platform 2023.1 Multiple Vulnerabilities

The version of SolarWinds Platform installed on the remote host is prior to 2023.1. It is, therefore, affected by multiple vulnerabilities as referenced in the solarwindsplatform20231 advisory. - SolarWinds Platform version 2022.4.1 was found to be susceptible to the Deserialization of Untrusted...

CVE-2022-38108

SolarWinds Platform was susceptible to the Deserialization of Untrusted Data. This vulnerability allows a remote adversary with Orion admin-level account access to SolarWinds Web Console to execute arbitrary commands...

CVE-2018-13040

OpenSID 18.06-pasca is affected by a CSRF vulnerability that can add an administrator-level account via the index.php/man_user/insert URI. The issue is described across multiple sources (including CVE-2018-13040 in NVD and CNVD/OSV entries), identifying the vulnerable component as the admin user-...