Arbitrary Command Execution in SolarWinds Log & Event Manager
CVE-2017-7647
8.8HIGH
What is CVE-2017-7647?
A security flaw in SolarWinds Log & Event Manager prior to version 6.3.1 Hotfix 4 allows an authenticated user to execute arbitrary commands on the server. This vulnerability poses a significant risk as malicious users could leverage their authenticated status to manipulate system settings and potentially compromise the entire environment.