Solarwinds Orion Platform Vulnerabilities

SolarWinds Platform Command Injection

CVE-2022-36962

SolarwindsSolarwinds Platform7.2HIGH

SolarWinds Platform Deserialization of Untrusted Data

CVE-2022-36964

SolarwindsSolarwinds Platform8.8HIGH

SolarWinds Platform Improper Input Validation

CVE-2022-36960

SolarwindsSolarwinds Platform8.8HIGH

SolarWinds Platform Deserialization of Untrusted Data

CVE-2022-36957

SolarwindsSolarwinds Platform7.2HIGH

SolarWinds Platform Deserialization of Untrusted Data

CVE-2022-38108

SolarwindsSolarwinds Platform7.2HIGH

SolarWinds Platform Deserialization of Untrusted Data

CVE-2022-36958

SolarwindsSolarwinds Platform8.8HIGH

Stored and DOM XSS in QoE Applications: Orion Platform

CVE-2022-36965

SolarwindsOrion Platform6.1MEDIUM

Orion Platform SQL Injection Privilege Escalation Vulnerability

CVE-2022-36961

SolarwindsOrion Platform8.8HIGH

Unrestricted File Upload Causing Remote Code Execution: Orion Platform 2020.2.6

CVE-2021-35244

SolarwindsOrion Platform6.8MEDIUM

Insecure Deserialization of untrusted data causing Remote code execution vulnerability.

CVE-2021-35217

SolarwindsOrion PlatformEPSS 12%8.9HIGH

Stored XSS through URL POST parameter in CreateExternalWebsite Vulnerability

CVE-2021-35238

SolarwindsOrion Platform4.8MEDIUM

Orion User setting Improper Access Control Privilege Escalation Vulnerability

CVE-2021-35213

SolarwindsOrion Platform8.9HIGH

Blind SQL injection Vulnerability

CVE-2021-35212

SolarwindsOrion Platform8.9HIGH

Stored XSS via Help Server settings

CVE-2021-35240

SolarwindsOrion Platform6.5MEDIUM

Stored XSS in Maps text box hyperlink Vulnerability

CVE-2021-35239

SolarwindsOrion Platform7.5HIGH

Resource.aspx Reflected Cross-Site Scripting Vulnerability

CVE-2021-35222

SolarwindsOrion Platform8HIGH

ImportAlert Improper Access Control Tampering Vulnerability

CVE-2021-35221

SolarwindsOrion Platform6.3MEDIUM

EmailWebPage Command Injection RCE

CVE-2021-35220

SolarwindsOrion Platform8.1HIGH

ExportToPdfCmd Arbitrary File Read Information Disclosure Vulnerability

CVE-2021-35219

SolarwindsOrion Platform6MEDIUM

Node Management Vulnerability in SolarWinds Orion Platform

CVE-2021-28674

SolarwindsOrion Platform5.4MEDIUM

ActionPluginBaseView Deserialization of Untrusted Data RCE

CVE-2021-35215

SolarwindsOrion Platform👾🟡8.9HIGH

Privilege Escalation Vulnerability in SolarWinds Orion Platform by SolarWinds

CVE-2021-27258

SolarwindsOrion Platform9.8CRITICAL

Stored XSS Vulnerability in SolarWinds Orion Platform

CVE-2020-35856

SolarwindsOrion Platform4.8MEDIUM

Reverse Tabnabbing Vulnerability in SolarWinds Orion Platform

CVE-2021-3109

SolarwindsOrion Platform4.8MEDIUM

File Creation Vulnerability in SolarWinds Orion Platform

CVE-2020-27871

SolarwindsOrion PlatformEPSS 20%7.2HIGH

Vulnerability Published:

Sort By:

29 November 2022

SolarWinds Platform Command Injection

SolarWinds Platform Deserialization of Untrusted Data

SolarWinds Platform Improper Input Validation

20 October 2022

SolarWinds Platform Deserialization of Untrusted Data

SolarWinds Platform Deserialization of Untrusted Data

19 October 2022

SolarWinds Platform Deserialization of Untrusted Data

30 September 2022

Stored and DOM XSS in QoE Applications: Orion Platform

Orion Platform SQL Injection Privilege Escalation Vulnerability

20 December 2021

Unrestricted File Upload Causing Remote Code Execution: Orion Platform 2020.2.6

2 September 2021

Insecure Deserialization of untrusted data causing Remote code execution vulnerability.

1 September 2021

Stored XSS through URL POST parameter in CreateExternalWebsite Vulnerability

Orion User setting Improper Access Control Privilege Escalation Vulnerability

31 August 2021

Blind SQL injection Vulnerability

Stored XSS via Help Server settings

Stored XSS in Maps text box hyperlink Vulnerability

Resource.aspx Reflected Cross-Site Scripting Vulnerability

ImportAlert Improper Access Control Tampering Vulnerability

EmailWebPage Command Injection RCE

ExportToPdfCmd Arbitrary File Read Information Disclosure Vulnerability

30 July 2021

Node Management Vulnerability in SolarWinds Orion Platform

15 July 2021

ActionPluginBaseView Deserialization of Untrusted Data RCE

14 April 2021

Privilege Escalation Vulnerability in SolarWinds Orion Platform by SolarWinds

26 March 2021

Stored XSS Vulnerability in SolarWinds Orion Platform

Reverse Tabnabbing Vulnerability in SolarWinds Orion Platform

10 February 2021

File Creation Vulnerability in SolarWinds Orion Platform