2 matches found
CVE-2023-35186 SolarWinds Access Rights Manager Deserialization of Untrusted Data Remote Code Execution Vulnerability
The SolarWinds Access Rights Manager was susceptible to Remote Code Execution Vulnerability. This vulnerability allows an authenticated user to abuse SolarWinds service resulting in remote code execution...
CVE-2023-35186
SolarWinds Access Rights Manager is affected by a deserialization-based remote code execution vulnerability. The flaw exists in GetParameterFormTemplateWithSelectionState and allows an authenticated attacker to execute arbitrary code in the service context by supplying crafted data. Several trust...