SolarWinds Log and Event Manager Local Elevation of Privilege Vulnerability

SolarWinds Log and Event Manager LEM, a.k.a. SIEM is a log and event manager from the U.S.-based SolarWinds that provides real-time log analysis, memory event correlation, and threat attack response. A local elevation of privilege vulnerability exists in SolarWinds Log and Event Manager versions...

CVE-2017-5198

SolarWinds LEM aka SIEM before 6.3.1 has an incorrect sudo configuration, which allows local users to obtain root access by editing /usr/local/contego/scripts/hostname.sh...