SolarWinds Database Performance Analyzer 11.1.457

CPE Details

SolarWinds Database Performance Analyzer 11.1.457
solarwinds
database_performance_analyzer
11.1.457
2019-09-09
10h38 +00:00
2019-09-09
10h38 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:solarwinds:database_performance_analyzer:11.1.457:*:*:*:*:*:*:*

Informations

Vendor

solarwinds

Product

database_performance_analyzer

Version

11.1.457

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2023-33231 2023-07-18 16h50 +00:00 XSS attack was possible in DPA 2023.2 due to insufficient input validation
6.1
Moyen
CVE-2023-23837 2023-04-25 00h00 +00:00 No exception handling vulnerability which revealed sensitive or excessive information to users.
7.5
Haute
CVE-2023-23838 2023-04-25 00h00 +00:00 Directory traversal and file enumeration vulnerability which allowed users to enumerate to different folders of the server.
6.5
Moyen
CVE-2022-38110 2023-01-19 23h00 +00:00 In Database Performance Analyzer (DPA) 2022.4 and older releases, certain URL vectors are susceptible to authenticated reflected cross-site scripting.
5.4
Moyen
CVE-2022-38112 2023-01-19 23h00 +00:00 In DPA 2022.4 and older releases, generated heap memory dumps contain sensitive information in cleartext.
7.5
Haute
CVE-2021-35229 2022-04-21 18h18 +00:00 Cross-site scripting vulnerability is present in Database Performance Monitor 2022.1.7779 and previous versions when using a complex SQL query
6.8
Moyen
CVE-2018-19386 2019-08-14 17h30 +00:00 SolarWinds Database Performance Analyzer 11.1.457 contains an instance of Reflected XSS in its idcStateError component, where the page parameter is reflected into the HREF of the 'Try Again' Button on the page, aka a /iwc/idcStateError.iwc?page= URI.
6.1
Moyen