Solarwinds Solarwinds_platform
27 CVEs affecting Solarwinds Solarwinds_platform. Latest disclosed: 2025-02-11. Critical: 0, High: 18.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-40061 | High | 8.8 | 2023-11-01 | Insecure job execution mechanism vulnerability. This vulnerability can lead to other attacks as a result. |
CVE-2023-50395 | High | 8.0 | 2024-02-06 | SQL Injection Remote Code Execution Vulnerability was found using an update statement in the SolarWinds Platform. This vulnerability requires user authenticat… |
CVE-2023-35188 | High | 8.0 | 2024-02-06 | SQL Injection Remote Code Execution Vulnerability was found using a create statement in the SolarWinds Platform. This vulnerability requires user authenticati… |
CVE-2023-40056 | High | 8.0 | 2023-11-28 | SQL Injection Remote Code Vulnerability was found in the SolarWinds Platform. This vulnerability can be exploited with a low privileged account. … |
CVE-2023-40062 | High | 8.0 | 2023-11-01 | SolarWinds Platform Incomplete List of Disallowed Inputs Remote Code Execution Vulnerability. If executed, this vulnerability would allow a low-privileged user… |
CVE-2024-29000 | High | 7.9 | 2024-05-20 | The SolarWinds Platform was determined to be affected by a reflected cross-site scripting vulnerability affecting the web console. A high-privileged user and u… |
CVE-2024-45710 | High | 7.8 | 2024-10-16 | SolarWinds Platform is susceptible to an Uncontrolled Search Path Element Local Privilege Escalation vulnerability. This requires a low privilege account and l… |
CVE-2024-28996 | High | 7.5 | 2024-06-04 | The SolarWinds Platform was determined to be affected by a SWQL Injection Vulnerability. Attack complexity is high for this vulnerability. |
CVE-2024-29003 | High | 7.5 | 2024-04-18 | The SolarWinds Platform was susceptible to a XSS vulnerability that affects the maps section of the user interface. This vulnerability requires authentication… |
CVE-2024-29001 | High | 7.5 | 2024-04-18 | A SolarWinds Platform SWQL Injection Vulnerability was identified in the user interface. This vulnerability requires authentication and user interaction to be… |
CVE-2023-33225 | High | 7.2 | 2023-07-26 | The SolarWinds Platform was susceptible to the Incorrect Comparison Vulnerability. This vulnerability allows users with administrative access to SolarWinds Web… |
CVE-2023-33224 | High | 7.2 | 2023-07-26 | The SolarWinds Platform was susceptible to the Incorrect Behavior Order Vulnerability. This vulnerability allows users with administrative access to SolarWinds… |
CVE-2023-23844 | High | 7.2 | 2023-07-26 | The SolarWinds Platform was susceptible to the Incorrect Comparison Vulnerability. This vulnerability allows users with administrative access to SolarWinds Web… |
CVE-2023-23843 | High | 7.2 | 2023-07-26 | The SolarWinds Platform was susceptible to the Incorrect Comparison Vulnerability. This vulnerability allows users with administrative access to SolarWinds Web… |
CVE-2024-45715 | High | 7.1 | 2024-10-16 | The SolarWinds Platform was susceptible to a Cross-Site Scripting vulnerability when performing an edit function to existing elements. |
CVE-2024-29004 | High | 7.1 | 2024-06-04 | The SolarWinds Platform was determined to be affected by a stored cross-site scripting vulnerability affecting the web console. A high-privileged user and user… |
CVE-2024-45717 | High | 7.0 | 2024-12-04 | The SolarWinds Platform was susceptible to a XSS vulnerability that affects the search and node information section of the user interface. This vulnerability r… |
CVE-2024-28076 | High | 7.0 | 2024-04-18 | The SolarWinds Platform was susceptible to a Arbitrary Open Redirection Vulnerability. A potential attacker can redirect to different domain when using URL par… |
CVE-2024-52612 | Medium | 6.8 | 2025-02-11 | SolarWinds Platform is vulnerable to a reflected cross-site scripting vulnerability. This was caused by an insufficient sanitation of input parameters. This vu… |
CVE-2023-23839 | Medium | 6.5 | 2023-04-25 | The SolarWinds Platform was susceptible to the Exposure of Sensitive Information Vulnerability. This vulnerability allows users to access Orion.WebCommunityStr… |