Remote Code Execution Vulnerability in SolarWinds Log and Event Manager
CVE-2015-7840

Currently unrated

Key Information:

Vendor

Solarwinds
Status
Log And Event Manager
Vendor
CVE Published:
15 October 2015

What is CVE-2015-7840?

The command line management console (CMC) of SolarWinds Log and Event Manager (LEM) versions prior to 6.2.0 is susceptible to a vulnerability that allows remote attackers to execute arbitrary code. This exploit can be triggered through unspecified methods involving the ping feature, posing a significant risk to the integrity and confidentiality of the affected systems.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://security.gentoo.org/glsa/201603-11
vendor-advisoryx_refsource_GENTOO
http://www.solarwinds.com/documentation/lem/docs/releasen...
x_refsource_CONFIRM

EPSS Score

19% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.