Lucene search
+L

13 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-21865

Malware in sbrugna...

9.6CVSS9.3AI score0.02614EPSS
Exploits0References5
OSV
OSV
added 2021/08/31 1:15 p.m.5 views

CVE-2021-35222

This vulnerability allows attackers to impersonate users and perform arbitrary actions leading to a Remote Code Execution RCE from the Alerts Settings page...

9.6CVSS6AI score0.02614EPSS
Exploits0References4
NVD
NVD
added 2021/08/31 1:15 p.m.20 views

CVE-2021-35221

Improper Access Control Tampering Vulnerability using ImportAlert function which can lead to a Remote Code Execution RCE from the Alerts Settings page...

8.1CVSS0.02043EPSS
Exploits0References4
Prion
Prion
added 2021/08/31 1:15 p.m.20 views

Remote code execution

This vulnerability allows attackers to impersonate users and perform arbitrary actions leading to a Remote Code Execution RCE from the Alerts Settings page...

4.3CVSS9.3AI score0.02614EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2021/08/31 1:15 p.m.20 views

Improper access control

Improper Access Control Tampering Vulnerability using ImportAlert function which can lead to a Remote Code Execution RCE from the Alerts Settings page...

5.5CVSS8.2AI score0.02043EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2021/08/31 12:15 p.m.5 views

CVE-2021-35220

Command Injection vulnerability in EmailWebPage API which can lead to a Remote Code Execution RCE from the Alerts Settings page...

7.2CVSS5.9AI score0.02454EPSS
Exploits0References4
NVD
NVD
added 2021/08/31 12:15 p.m.22 views

CVE-2021-35220

Command Injection vulnerability in EmailWebPage API which can lead to a Remote Code Execution RCE from the Alerts Settings page...

8.1CVSS0.02454EPSS
Exploits0References4
NVD
NVD
added 2021/08/31 12:15 p.m.23 views

CVE-2021-35219

ExportToPdfCmd Arbitrary File Read Information Disclosure Vulnerability using ImportAlert function within the Alerts Settings page...

6CVSS0.00844EPSS
Exploits0References4
CVE
CVE
added 2021/08/31 12:14 p.m.94 views

CVE-2021-35222

CVE-2021-35222 affects SolarWinds Orion Platform; the vulnerability is described as enabling attackers to impersonate users and perform arbitrary actions resulting in Remote Code Execution (RCE) from the Alerts Settings page. The connected documents corroborate the RCE/Risk association for this C...

9.6CVSS8.8AI score0.02614EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2021/08/31 11:3 a.m.26 views

CVE-2021-35220 EmailWebPage Command Injection RCE

Command Injection vulnerability in EmailWebPage API which can lead to a Remote Code Execution RCE from the Alerts Settings page...

8.1CVSS9.4AI score0.02454EPSS
Exploits0References4
CVE
CVE
added 2021/08/31 11:3 a.m.87 views

CVE-2021-35220

SolarWinds Orion Platform 2020.2.0 before 2020.2.6 HF1 is affected by CVE-2021-35220 (EmailWebPage API command injection). An authenticated remote attacker could exploit this via the Alerts Settings page to achieve Remote Code Execution. Remediation: upgrade to 2020.2.6 HF1 or later; apply vendor...

8.1CVSS7.7AI score0.02454EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2021/08/31 11:1 a.m.22 views

CVE-2021-35219 ExportToPdfCmd Arbitrary File Read Information Disclosure Vulnerability

ExportToPdfCmd Arbitrary File Read Information Disclosure Vulnerability using ImportAlert function within the Alerts Settings page...

6CVSS7.5AI score0.00844EPSS
Exploits0References4
CVE
CVE
added 2021/08/31 11:1 a.m.97 views

CVE-2021-35219

SolarWinds Orion Platform prior to 2020.2.6 HF1 is affected by CVE-2021-35219: ExportToPdfCmd Arbitrary File Read via the ImportAlert function in the Alerts Settings page. The vulnerability allows an authenticated, remote attacker to read arbitrary files. Remediation is to upgrade to 2020.2.6 HF1...

6CVSS5.6AI score0.00844EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder