Cross-site scripting vulnerability in SolarWinds Orion Network Performance Monitor
CVE-2012-4939

Currently unrated

Key Information:

Vendor: Solarwinds
Status: Orion Network Performance Monitor; Ip Address Manager Web Interface
Vendor: CVE Published:; 31 October 2012

What is CVE-2012-4939?

The IPAM web interface in SolarWinds Orion Network Performance Monitor is susceptible to cross-site scripting (XSS) attacks. This vulnerability can be exploited by remote attackers through the 'Search for an IP address' field, allowing them to inject malicious web scripts or HTML. If successfully executed, attackers can manipulate user sessions, redirect users to malicious websites, or perform other harmful actions, putting sensitive data at risk.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.kb.cert.org/vuls/id/203844

third-party-advisoryx_refsource_CERT-VN

EPSS Score

9% chance of being exploited in the next 30 days.

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Oct 31, 2012

JSON

Solarwinds

What is CVE-2012-4939?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

References

EPSS Score

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.