CPE Details
Solarwinds Orion Platform 2022.2.0
2022.2.0
2022-09-30
15h50 +00:00
15h50 +00:00
2022-10-11
16h50 +00:00
16h50 +00:00
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
CPE Name: cpe:2.3:a:solarwinds:orion_platform:2022.2.0:*:*:*:*:*:*:*
Informations
Vendor
solarwindsProduct
orion_platformVersion
2022.2.0Related CVE
| CVE ID | Publié | Description | Score | Gravité |
|---|---|---|---|---|
| The SolarWinds Platform was susceptible to the Incorrect Comparison Vulnerability. This vulnerability allows users with administrative access to SolarWinds Web Console to execute arbitrary commands with NETWORK SERVICE privileges. | 7.2 |
Haute |
||
| The SolarWinds Platform was susceptible to the Incorrect Comparison Vulnerability. This vulnerability allows users with administrative access to SolarWinds Web Console to execute arbitrary commands with NETWORK SERVICE privileges. | 7.2 |
Haute |
||
| The SolarWinds Platform was susceptible to the Command Injection Vulnerability. This vulnerability allows a remote adversary with a valid SolarWinds Platform admin account to execute arbitrary commands. | 7.2 |
Haute |
||
| The SolarWinds Platform was susceptible to the Local Privilege Escalation Vulnerability. This vulnerability allows a local adversary with a valid system user account to escalate local privileges. | 7.8 |
Haute |
||
| The SolarWinds Platform was susceptible to the Incorrect Input Neutralization Vulnerability. This vulnerability allows a remote adversary with a valid SolarWinds Platform account to append URL parameters to inject HTML. | 6.1 |
Moyen |
||
| A vulnerable component of Orion Platform was vulnerable to SQL Injection, an authenticated attacker could leverage this for privilege escalation or remote code execution. | 8.8 |
Haute |
2025©
tesweb SA
