SolarWinds Network Performance Monitor 12.4

CPE Details

SolarWinds Network Performance Monitor 12.4
solarwinds
network_performance_monitor
12.4
2019-07-30
13h31 +00:00
2019-07-30
13h31 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:solarwinds:network_performance_monitor:12.4:*:*:*:*:*:*:*

Informations

Vendor

solarwinds

Product

network_performance_monitor

Version

12.4

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2021-35225 2021-10-21 17h39 +00:00 Each authenticated Orion Platform user in a MSP (Managed Service Provider) environment can view and browse all NetPath Services from all that MSP's customers. This can lead to any user having a limited insight into other customer's infrastructure and potential data cross-contamination.
6.4
Medium
CVE-2019-12864 2020-05-04 11h30 +00:00 SolarWinds Orion Platform 2018.4 HF3 (NPM 12.4, NetPath 1.1.4) is vulnerable to Information Leakage, because of improper error handling with stack traces, as demonstrated by discovering a full pathname upon a 500 Internal Server Error via the api2/swis/query?lang=en-us&swAlertOnError=false query parameter.
5.5
Medium
CVE-2019-12863 2020-02-25 15h52 +00:00 SolarWinds Orion Platform 2018.4 HF3 (NPM 12.4, NetPath 1.1.4) allows Stored HTML Injection by administrators via the Web Console Settings screen.
4.8
Medium