HIGH🇬🇧 English

CVE-2023-33224

CVSS 7.2v3.1pub. 2023-07-26upd. 2024-11-21

The SolarWinds Platform was susceptible to the Incorrect Behavior Order Vulnerability. This vulnerability allows users with administrative access to SolarWinds Web Console to execute arbitrary commands with NETWORK SERVICE privileges.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
  • Solarwinds Platform

    APP
    Solarwinds
    < 2023.3.0
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2024-45717HIGH7.0ten sam produkt

The SolarWinds Platform was susceptible to a XSS vulnerability that affects the search and node information se...

CVE-2024-45710HIGH7.8ten sam produkt

SolarWinds Platform is susceptible to an Uncontrolled Search Path Element Local Privilege Escalation vulnerabi...

CVE-2024-45715HIGH7.1ten sam produkt

The SolarWinds Platform was susceptible to a Cross-Site Scripting vulnerability when performing an edit functi...

CVE-2024-28996HIGH7.5ten sam produkt

The SolarWinds Platform was determined to be affected by a SWQL Injection Vulnerability. Attack complexity is ...

CVE-2024-29004HIGH7.1ten sam produkt

The SolarWinds Platform was determined to be affected by a stored cross-site scripting vulnerability affecting...