Reflected Cross-Site Scripting Vulnerability in SolarWinds Platform
CVE-2024-52612
4.8MEDIUM
What is CVE-2024-52612?
The SolarWinds Platform is impacted by a reflected cross-site scripting vulnerability stemming from inadequate sanitization of input parameters. Attackers with access to high-privileged accounts could exploit this flaw, potentially allowing them to execute malicious scripts in users' browsers. Organizations using the SolarWinds Platform should be aware of this vulnerability and review their user account access policies.
Affected Version(s)
SolarWinds Platform Windows 2024.4.1 and previous versions