CVE-2020-25618
SolarWinds N-Central 12.3.0.670 contains a sudo misconfiguration: the nable web user can effectively execute arbitrary OS commands as root because root privileges are not restricted to specific programs in the sudoers file. This impacts the product’s ability to enforce least privilege via sudo, e...