3 matches found
CVE-2022-47508
The CVE-2022-47508 entry concerns SolarWinds Server & Application Monitor (SAM). According to the provided records, the issue stems from weaknesses in the authentication procedure that enable issues with NTLM/ Kerberos handling, particularly when polling data via IP instead of Kerberos. The NVD e...
CVE-2015-1501
The CVE-2015-1501 flaw affects SolarWinds Server and Application Monitor (SAM) in the TSUnicodeGraphEditorControl: factory.loadExtensionFactory accepts a UNC path to a crafted binary, enabling remote code execution. Multiple sources (e.g., ZDI-15-043, CPAI-2015-0429, CNVD-2015-01241) describe rem...
CVE-2015-1500
Summary: CVE-2015-1500 affects SolarWinds Server and Application Monitor (SAM) via the TSUnicodeGraphEditorControl. The two identified attack surfaces are the graphManager.load and the factory.loadExtensionFactory paths. The root cause is stack-based buffer overflows caused by insufficient valida...