Lucene search
K

16 matches found

EUVD
EUVD
•added 2025/10/07 12:30 a.m.•4 views

EUVD-2018-5384

Malware in sbrugna...

8.8CVSS8.8AI score0.01665EPSS
Exploits0References2
EUVD
EUVD
•added 2025/10/07 12:30 a.m.•5 views

EUVD-2017-18469

Malware in sbrugna...

4.9CVSS5.1AI score0.02432EPSS
Exploits2References4
EUVD
EUVD
•added 2025/10/07 12:30 a.m.•7 views

EUVD-2019-4529

Malware in sbrugna...

5.4CVSS5.6AI score0.01363EPSS
Exploits1References2
RedhatCVE
RedhatCVE
•added 2025/05/22 7:15 a.m.•8 views

CVE-2018-13442

SolarWinds Network Performance Monitor 12.3 allows SQL Injection via the /api/ActiveAlertsOnThisEntity/GetActiveAlerts TriggeringObjectEntityNames parameter...

8.8CVSS8.3AI score0.01665EPSS
Exploits0References1
RedhatCVE
RedhatCVE
•added 2025/02/06 4:27 a.m.•26 views

CVE-2021-31474

This vulnerability allows remote attackers to execute arbitrary code on affected installations of SolarWinds Network Performance Monitor 2020.2.1. Authentication is not required to exploit this vulnerability. The specific flaw exists within the SolarWinds.Serialization library. The issue results...

10CVSS7.3AI score0.94431EPSS
Exploits1References1
RedhatCVE
RedhatCVE
•added 2025/02/05 3:0 p.m.•11 views

CVE-2020-27869

This vulnerability allows remote attackers to escalate privileges on affected installations of SolarWinds Network Performance Monitor 2020 HF1, NPM: 2020.2. Authentication is required to exploit this vulnerability. The specific flaw exists within the WriteToFile method. The issue results from the...

9CVSS7.5AI score0.05091EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
•added 2023/02/24 12:0 a.m.•27 views

SolarWinds Network Performance Monitor sshd_SftpRename Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of SolarWinds Network Performance Monitor. Authentication may be required to exploit this vulnerability, depending on the product configuration. The specific flaw exists within the sshdSftpRename...

9.8CVSS4.3AI score0.00627EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2022/11/23 12:0 a.m.•32 views

SolarWinds Network Performance Monitor GetPdf Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute code on affected installations of SolarWinds Network Performance Monitor. Authentication is required to exploit this vulnerability. The specific flaw exists within the GetPdf function. The issue results from the lack of proper validation of a...

7.2CVSS2.3AI score0.0901EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2021/12/23 12:0 a.m.•27 views

SolarWinds Network Performance Monitor WriteToEventLog Exposed Dangerous Function Privilege Escalation Vulnerability

This vulnerability allows remote attackers to escalate privileges on affected installations of SolarWinds Network Performance Monitor. Authentication is required to exploit this vulnerability. The specific flaw exists within the SolarWinds.Orion.Core.Actions.dll module. A crafted request can...

8.8CVSS2.9AI score0.02796EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
•added 2021/10/28 12:0 a.m.•30 views

SolarWinds Orion Network Performance Monitor DisableNOCView SQL Injection Privilege Escalation Vulnerability

This vulnerability allows remote attackers to escalate privileges on affected installations of SolarWinds Orion Network Performance Monitor. Authentication is required to exploit this vulnerability. The specific flaw exists within the DisableNOCView method. The issue results from the lack of prop...

8.8CVSS2.6AI score0.01642EPSS
Exploits0References1
NVD
NVD
•added 2021/05/21 3:15 p.m.•50 views

CVE-2021-31474

This vulnerability allows remote attackers to execute arbitrary code on affected installations of SolarWinds Network Performance Monitor 2020.2.1. Authentication is not required to exploit this vulnerability. The specific flaw exists within the SolarWinds.Serialization library. The issue results...

10CVSS0.94431EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
•added 2021/05/21 12:0 a.m.•25 views

CVE-2021-31474

This vulnerability allows remote attackers to execute arbitrary code on affected installations of SolarWinds Network Performance Monitor 2020.2.1. Authentication is not required to exploit this vulnerability. The specific flaw exists within the SolarWinds.Serialization library. The issue results...

10CVSS0.9AI score0.94431EPSS
Exploits1References3
NVD
NVD
•added 2017/10/03 1:29 a.m.•16 views

CVE-2017-9538

The 'Upload logo from external path' function of SolarWinds Network Performance Monitor version 12.0.15300.90 allows remote attackers to cause a denial of service permanent display of a "Cannot exit above the top directory" error message throughout the entire web application via a ".." in the pat...

4.9CVSS5.1AI score0.02432EPSS
Exploits2References2
Prion
Prion
•added 2017/10/03 1:29 a.m.•12 views

Directory traversal

The 'Upload logo from external path' function of SolarWinds Network Performance Monitor version 12.0.15300.90 allows remote attackers to cause a denial of service permanent display of a "Cannot exit above the top directory" error message throughout the entire web application via a ".." in the pat...

4CVSS7AI score0.02432EPSS
Exploits2References2Affected Software1
0day.today
0day.today
•added 2017/09/30 12:0 a.m.•67 views

SolarWinds Network Performance Monitor 12.0.15300.90 Cross Site Scripting Vulnerability

Exploit for windows platform in category dos / poc ------------------------------------------------------------- Vulnerability type: Persistent Cross-Site Scripting ------------------------------------------------------------- Credit: Andy Tan CVE ID: CVE-2017-9537...

3.5CVSS5.7AI score0.02822EPSS
Exploits2
Packet Storm
Packet Storm
•added 2017/09/29 12:0 a.m.•49 views

SolarWinds Network Performance Monitor 12.0.15300.90 Cross Site Scripting

------------------------------------------------------------- Vulnerability type: Persistent Cross-Site Scripting ------------------------------------------------------------- Credit: Andy Tan CVE ID: CVE-2017-9537 ----------------------------------------------- Product: SolarWinds Network...

5.2AI score0.02822EPSS
Exploits2
Rows per page
Query Builder