9 matches found
SolarWinds Orion Platform Authentication Bypass (CVE-2020-10148)
An authentication bypass vulnerability exists in SolarWinds Orion API. Successful exploitation of this vulnerability could allow a remote attacker to gain unauthorized access to the affected system...
SolarWinds Hack — New Evidence Suggests Potential Links to Chinese Hackers
A malicious web shell deployed on Windows systems by leveraging a previously undisclosed zero-day in SolarWinds' Orion network monitoring software may have been the work of a possible Chinese threat group. In a report published by Secureworks on Monday, the cybersecurity firm attributed the...
Exploit for Missing Authentication for Critical Function in Solarwinds Orion_Platform
Usage & Disclaimer This script is a batch detection script f...
CVE-2020-10148
The SolarWinds Orion API is vulnerable to an authentication bypass that could allow a remote attacker to execute API commands. This vulnerability could allow a remote attacker to bypass authentication and execute API commands which may result in a compromise of the SolarWinds instance. SolarWinds...
CVE-2020-10148
CVE-2020-10148 is a vulnerability in the SolarWinds Orion API where an authentication bypass can allow a remote attacker to execute API commands, potentially compromising the Orion instance. Affected are SolarWinds Orion Platform versions 2019.4 HF5, 2020.2 with no hotfix, and 2020.2 HF1. The vul...
Exploit for Missing Authentication for Critical Function in Solarwinds Orion_Platform
CVE-2020-10148 Solarwinds Orion Download CVE-2020-10148.py...
CVE-2020-10148
creationtimestamp| type| source ---|---|--- 2020-12-28 10:40:02+00:00| exploited| https://t.me/SecLabNews/9489 2020-12-28 14:17:56+00:00| seen| https://t.me/truesecator/1296 2020-12-30 14:26:54+00:00| published-proof-of-concept| https://t.me/canyoupwnme/6698 2020-12-31 18:23:59+00:00| exploited|...
SolarWinds Orion Platform < 2019.4 HF6 / 2020.2 < 2020.2.1 HF2 Authentication Bypass (SUPERNOVA)
The version of SolarWinds Orion Platform running on the remote host is prior to 2019.4 HF6 or 2020.2 prior to 2020.2.1 HF 2. It is, therefore, affected by an authentication bypass vulnerability. An unauthenticated attacker can exploit this, via a specially crafted web request, to bypass...
SolarWinds SUNBURST Backdoor Supply Chain Attack: What You Need to Know
On Dec. 12, 2020, FireEye provided detailed information on a widespread attack campaign involving a backdoored component of the SolarWinds Orion platform, which is used by organizations to monitor and manage IT infrastructure. FireEye has given the campaign an identifier of UNC2452 and is further...