Lucene search
+L

4 matches found

NVD
NVD
added 2022/10/20 9:15 p.m.29 views

CVE-2022-36966

Users with Node Management rights were able to view and edit all nodes due to Insufficient control on URL parameter causing insecure direct object reference IDOR vulnerability in SolarWinds Platform 2022.3 and previous...

5.4CVSS0.00405EPSS
Exploits0References2
CVE
CVE
added 2022/10/20 8:5 p.m.63 views

CVE-2022-36966

CVE-2022-36966 affects SolarWinds Platform (Orion Platform) 2022.3 and older. The root cause is insufficient control on a URL parameter causing an insecure direct object reference (IDOR). The impact is that users with Node Management rights can view and edit all nodes. Mitigation: update to a ver...

5.4CVSS5.9AI score0.00405EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/10/20 8:5 p.m.9 views

CVE-2022-36966 Insecure Direct Object Reference Vulnerability: Orion Platform 2020.2.6

Users with Node Management rights were able to view and edit all nodes due to Insufficient control on URL parameter causing insecure direct object reference IDOR vulnerability in SolarWinds Platform 2022.3 and previous...

5.4CVSS5.5AI score0.00405EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/10/20 8:5 p.m.32 views

CVE-2022-36966 Insecure Direct Object Reference Vulnerability: Orion Platform 2020.2.6

Users with Node Management rights were able to view and edit all nodes due to Insufficient control on URL parameter causing insecure direct object reference IDOR vulnerability in SolarWinds Platform 2022.3 and previous...

5.4CVSS6.5AI score0.00405EPSS
Exploits0References2
Rows per page
Query Builder