CVE-2019-8917

9.8CRITICAL

Key Information:

Vendor: Solarwinds
Status: Orion Network Performance Monitor
Vendor: CVE Published:; 18 February 2019

Summary

SolarWinds Orion NPM before 12.4 suffers from a SYSTEM remote code execution vulnerability in the OrionModuleEngine service. This service establishes a NetTcpBinding endpoint that allows remote, unauthenticated clients to connect and call publicly exposed methods. The InvokeActionMethod method may be abused by an attacker to execute commands as the SYSTEM user.

References

http://www.securityfocus.com/bid/107061

vdb-entryx_refsource_BID

https://github.com/VerSprite/research/blob/master/advisor...

x_refsource_MISC

EPSS Score

13% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 18, 2019
Vulnerability Reserved
Feb 18, 2019