CVE-2021-25275

Exploit

EPSS 0.59%
Veröffentlicht 03.02.2021 17:15:16
Zuletzt bearbeitet 21.11.2024 05:54:39
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

SolarWinds Orion Platform before 2020.2.4, as used by various SolarWinds products, installs and uses a SQL Server backend, and stores database credentials to access this backend in a file readable by unprivileged users. As a result, any user having access to the filesystem can read database login details from that file, including the login name and its associated password. Then, the credentials can be used to get database owner access to the SWNetPerfMon.DB database. This gives access to the data collected by SolarWinds applications, and leads to admin access to the applications by inserting or changing authentication data stored in the Accounts table of the database.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

NVD 1 VulnDex Vulnerability Enrichment 0

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Solarwinds ≫ Orion Platform Version < 2020.2.4

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.59%	0.437

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	2.1	3.9	2.9	AV:L/AC:L/Au:N/C:P/I:N/A:N

CWE-798 Use of Hard-coded Credentials

The product contains hard-coded credentials, such as a password or cryptographic key.

https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/full-system-control-with-new-solarwinds-orion-based-and-serv-u-ftp-vulnerabilities/

Third Party Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2021-25275

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-25275

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-25275

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2021-25275