← volver
CVE-2023-33224

SolarWinds Platform Incorrect Behavior Order Vulnerability

CVSS 7.2 HIGHEPSS 2.8%CWE-696
The SolarWinds Platform was susceptible to the Incorrect Behavior Order Vulnerability. This vulnerability allows users with administrative access to SolarWinds Web Console to execute arbitrary commands with NETWORK SERVICE privileges.
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Productos afectados
SolarWinds · SolarWinds Platform

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://documentation.solarwinds.com/en/success_center/orionplatform/content/release_notes/solarwinds_platform_2023-3_release_notes.htmhttps://www.solarwinds.com/trust-center/security-advisories/cve-2023-33224