The vulnerability of the ExpandZipFile method in the SolarWinds Access Rights Manager software allows a intruder to execute arbitrary code.
The vulnerability of the ExpandZipFile method in the SolarWinds Access Rights Manager software lies in improper restrictions on the path name of the restricted directory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...