The "Log alert to a file" action within action management enables any Orion Platform user with Orion alert management rights to write to any file. An attacker with Orion alert management rights could use this vulnerability to perform an unrestricted file upload causing a remote code execution.
References
Link | Resource |
---|---|
https://documentation.solarwinds.com/en/Success_Center/orionplatform/content/core-secure-configuration.htm | Vendor Advisory |
https://support.solarwinds.com/SuccessCenter/s/article/Orion-Platform-2020-2-6-Hotfix-3?language=en_US | Release Notes Vendor Advisory |
https://www.solarwinds.com/trust-center/security-advisories/cve-2021-35242 | Not Applicable Vendor Advisory |
https://www.zerodayinitiative.com/advisories/ZDI-22-375/ | Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
AND |
|
History
17 Mar 2022, 17:54
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://www.zerodayinitiative.com/advisories/ZDI-22-375/ - Third Party Advisory, VDB Entry | |
CVSS |
v2 : v3 : |
v2 : 8.5
v3 : 7.2 |
16 Feb 2022, 19:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
04 Jan 2022, 16:11
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 6.0
v3 : 7.2 |
CWE | CWE-434 | |
CPE | cpe:2.3:a:solarwinds:orion_platform:2020.2.6:-:*:*:*:*:*:* cpe:2.3:a:solarwinds:orion_platform:2020.2.6:hotfix2:*:*:*:*:*:* cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* cpe:2.3:a:solarwinds:orion_platform:*:*:*:*:*:*:*:* cpe:2.3:a:solarwinds:orion_platform:2020.2.6:hotfix1:*:*:*:*:*:* |
|
References | (MISC) https://support.solarwinds.com/SuccessCenter/s/article/Orion-Platform-2020-2-6-Hotfix-3?language=en_US - Release Notes, Vendor Advisory | |
References | (MISC) https://www.solarwinds.com/trust-center/security-advisories/cve-2021-35242 - Not Applicable, Vendor Advisory | |
References | (MISC) https://documentation.solarwinds.com/en/Success_Center/orionplatform/content/core-secure-configuration.htm - Vendor Advisory |
20 Dec 2021, 21:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-12-20 21:15
Updated : 2024-02-04 22:08
NVD link : CVE-2021-35244
Mitre link : CVE-2021-35244
CVE.ORG link : CVE-2021-35244
JSON object : View
Products Affected
solarwinds
- orion_platform
microsoft
- windows
CWE
CWE-434
Unrestricted Upload of File with Dangerous Type