Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-36962

SolarWinds Platform was susceptible to Command Injection. This vulnerability allows a remote adversary with complete control over the SolarWinds database to execute arbitrary commands.

Published

2022-11-29T21:15:10.770

Last Modified

2024-11-21T07:14:09.870

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.2 (HIGH)

Weaknesses
  • Type: Secondary
    CWE-78
  • Type: Primary
    CWE-77
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application solarwinds orion_platform < 2020.2.6 Yes
Application solarwinds orion_platform 2020.2.6 Yes
Application solarwinds orion_platform 2020.2.6 Yes
Application solarwinds orion_platform 2020.2.6 Yes
Application solarwinds orion_platform 2020.2.6 Yes
Application solarwinds orion_platform 2020.2.6 Yes
Application solarwinds orion_platform 2020.2.6 Yes
Application solarwinds orion_platform 2022.2 Yes
Application solarwinds orion_platform 2022.3 Yes
References