The SolarWinds Platform was susceptible to the Incorrect Comparison Vulnerability. This vulnerability allows users with administrative access to SolarWinds Web Console to execute arbitrary commands with SYSTEM privileges.
References
Configurations
History
01 Aug 2023, 20:29
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:solarwinds:solarwinds_platform:*:*:*:*:*:*:*:* | |
References | (MISC) https://documentation.solarwinds.com/en/success_center/orionplatform/content/release_notes/solarwinds_platform_2023-3_release_notes.htm - Release Notes | |
References | (MISC) https://www.solarwinds.com/trust-center/security-advisories/CVE-2023-23844 - Vendor Advisory | |
CWE | CWE-697 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.2 |
26 Jul 2023, 14:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-07-26 14:15
Updated : 2024-02-05 00:01
NVD link : CVE-2023-23844
Mitre link : CVE-2023-23844
CVE.ORG link : CVE-2023-23844
JSON object : View
Products Affected
solarwinds
- solarwinds_platform