CVE-2024-28074

It was discovered that a previous vulnerability was not completely fixed with SolarWinds Access Rights Manager. While some controls were implemented the researcher was able to bypass these and use a different method to exploit the vulnerability.

CVSS v3 9.8 CRITICAL

9.8^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://documentation.solarwinds.com/en/success_center/arm/content/release_notes/arm_2024-3_release_notes.htm	Release Notes

Configurations

Configuration 1 (hide)

cpe:2.3:a:solarwinds:access_rights_manager:*:*:*:*:*:*:*:*

History

10 Sep 2024, 18:54

Type	Values Removed	Values Added
First Time		Solarwinds access Rights Manager Solarwinds
CVSS	v2 : ~~unknown~~ v3 : ~~9.6~~	v2 : unknown v3 : 9.8
CPE		cpe:2.3:a:solarwinds:access_rights_manager::::::::
References	~~() https://documentation.solarwinds.com/en/success_center/arm/content/release_notes/arm_2024-3_release_notes.htm -~~	() https://documentation.solarwinds.com/en/success_center/arm/content/release_notes/arm_2024-3_release_notes.htm - Release Notes

18 Jul 2024, 12:28

Type	Values Removed	Values Added
Summary		(es) Se descubrió que una vulnerabilidad anterior no se solucionó por completo con SolarWinds Access Rights Manager. Si bien se implementaron algunos controles, el investigador pudo evitarlos y utilizar un método diferente para explotar la vulnerabilidad.

17 Jul 2024, 15:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-07-17 15:15

Updated : 2024-09-10 18:54

NVD link : CVE-2024-28074

Mitre link : CVE-2024-28074

CVE.ORG link : CVE-2024-28074

JSON object : View

Products Affected

solarwinds

access_rights_manager

CWE

CWE-502

Deserialization of Untrusted Data

{"id": "CVE-2024-28074", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}, {"type": "Secondary", "source": "psirt@solarwinds.com", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 9.6, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 6.0, "exploitabilityScore": 2.8}]}, "published": "2024-07-17T15:15:13.417", "references": [{"url": "https://documentation.solarwinds.com/en/success_center/arm/content/release_notes/arm_2024-3_release_notes.htm", "tags": ["Release Notes"], "source": "psirt@solarwinds.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "psirt@solarwinds.com", "description": [{"lang": "en", "value": "CWE-502"}]}], "descriptions": [{"lang": "en", "value": "It was discovered that a previous vulnerability was not completely fixed with SolarWinds Access Rights Manager. While some controls were implemented the researcher was able to bypass these and use a different method to exploit the vulnerability."}, {"lang": "es", "value": "Se descubri\u00f3 que una vulnerabilidad anterior no se solucion\u00f3 por completo con SolarWinds Access Rights Manager. Si bien se implementaron algunos controles, el investigador pudo evitarlos y utilizar un m\u00e9todo diferente para explotar la vulnerabilidad."}], "lastModified": "2024-09-10T18:54:13.317", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:solarwinds:access_rights_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DC3AC50B-3261-4394-80A9-15303C2C1D58", "versionEndIncluding": "2023.2.4"}], "operator": "OR"}]}], "sourceIdentifier": "psirt@solarwinds.com"}