Описание
An Improper Access Control Privilege Escalation Vulnerability was discovered in the User Setting of Orion Platform version 2020.2.5. It allows a guest user to elevate privileges to the Administrator using this vulnerability. Authentication is required to exploit the vulnerability.
Ссылки
- Vendor Advisory
- Release NotesVendor Advisory
- Vendor Advisory
- Third Party AdvisoryVDB Entry
- Vendor Advisory
- Release NotesVendor Advisory
- Vendor Advisory
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Одновременно
EPSS
8.9 High
CVSS3
8.8 High
CVSS3
9 Critical
CVSS2
Дефекты
Связанные уязвимости
An Improper Access Control Privilege Escalation Vulnerability was discovered in the User Setting of Orion Platform version 2020.2.5. It allows a guest user to elevate privileges to the Administrator using this vulnerability. Authentication is required to exploit the vulnerability.
Уязвимость компонента SaveUserSetting программного обеспечения сетевого мониторинга SolarWinds Orion Platform, позволяющая нарушителю повысить свои привилегии до уровня администратора
EPSS
8.9 High
CVSS3
8.8 High
CVSS3
9 Critical
CVSS2