Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-36960

SolarWinds Platform was susceptible to Improper Input Validation. This vulnerability allows a remote adversary with valid access to SolarWinds Web Console to escalate user privileges.

Published

2022-11-29T21:15:10.693

Last Modified

2024-11-21T07:14:09.587

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 8.8 (HIGH)

Weaknesses
  • Type: Secondary
    CWE-20
    CWE-287
  • Type: Primary
    CWE-20
    CWE-287
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application solarwinds orion_platform < 2020.2.6 Yes
Application solarwinds orion_platform 2020.2.6 Yes
Application solarwinds orion_platform 2020.2.6 Yes
Application solarwinds orion_platform 2020.2.6 Yes
Application solarwinds orion_platform 2020.2.6 Yes
Application solarwinds orion_platform 2020.2.6 Yes
Application solarwinds orion_platform 2020.2.6 Yes
Application solarwinds orion_platform 2022.2 Yes
Application solarwinds orion_platform 2022.3 Yes
References