exploitDog

CVE-2023-40058

Опубликовано: 21 дек. 2023

Источник: nvd

CVSS3: 6.5

EPSS Низкий

Описание

Sensitive data was added to our public-facing knowledgebase that, if exploited, could be used to access components of Access Rights Manager (ARM) if the threat actor is in the same environment.

Ссылки

https://www.solarwinds.com/trust-center/security-advisories/CVE-2023-40058
Vendor Advisory
https://www.solarwinds.com/trust-center/security-advisories/CVE-2023-40058
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:solarwinds:access_rights_manager:*:*:*:*:*:*:*:*

Версия до 2023.2.1 (включая)

EPSS

Процентиль: 50%

0.00266

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-200

NVD-CWE-noinfo

Связанные уязвимости

GHSA-vgwx-x7cg-jpf9

CVSS3: 7.6

github

около 2 лет назад

Sensitive data was added to our public-facing knowledgebase that, if exploited, could be used to access components of Access Rights Manager (ARM) if the threat actor is in the same environment.

EPSS

Процентиль: 50%

0.00266

Низкий

6.5 Medium

CVSS3

Дефекты

CWE-200

NVD-CWE-noinfo