The SolarWinds Network Configuration Manager was susceptible to the Directory Traversal Vulnerability. This vulnerability allows users with administrative access to SolarWinds Web Console to execute arbitrary commands.
References
Link | Resource |
---|---|
https://documentation.solarwinds.com/en/success_center/ncm/content/release_notes/ncm_2023-3_release_notes.htm | Release Notes Vendor Advisory |
https://www.solarwinds.com/trust-center/security-advisories/CVE-2023-23842 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: SolarWinds
Published: 2023-07-26T14:53:41.885Z
Updated: 2023-09-14T19:02:46.041Z
Reserved: 2023-01-18T22:55:27.984Z
Link: CVE-2023-23842
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-07-26T15:15:10.167
Modified: 2023-10-30T19:43:24.260
Link: CVE-2023-23842
JSON object: View
Redhat Information
No data.
CWE