4 matches found
SolarWinds Information Service (SWIS) .NET Deserialization From AMQP RCE
The SolarWinds Information Service SWIS is vulnerable to RCE by way of a crafted message received through the AMQP message queue. A malicious user that can authenticate to the AMQP service can publish such a crafted message whose body is a serialized .NET object which can lead to OS command...
SolarWinds Information Service (SWIS) Remote Command Execution
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'rex/proto/amqp/version091' class MetasploitModule 'SolarWinds Information Service SWIS .NET Deserialization From AMQP RCE', 'Description' = %q The SolarWinds...
CVE-2022-38108
creationtimestamp| type| source ---|---|--- 2022-10-21 09:13:37+00:00| seen| https://t.me/cibsecurity/51906 2023-03-02 11:02:01+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/7849 2023-03-29 14:49:46+00:00| seen|...
CVE-2022-38108
The CVE-2022-38108 issue affects SolarWinds Platform, specifically the SWIS component. It is a deserialization vulnerability in SWIS that can lead to OS command execution when a crafted AMQP message is processed; an attacker must authenticate to the AMQP service with SolarWinds access (e.g., an O...