Solarwinds

Access Rights Manager

32 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2024-23469

  • EPSS 10.51%
  • Veröffentlicht 17.07.2024 15:15:11
  • Zuletzt bearbeitet 21.11.2024 08:57:46

SolarWinds Access Rights Manager (ARM) is susceptible to a Remote Code Execution vulnerability. If exploited, this vulnerability allows an unauthenticated user to perform the actions with SYSTEM privileges.

8.3

CVE-2024-23468

  • EPSS 0.64%
  • Veröffentlicht 17.07.2024 15:15:11
  • Zuletzt bearbeitet 21.11.2024 08:57:46

The SolarWinds Access Rights Manager was susceptible to a Directory Traversal and Information Disclosure Vulnerability. This vulnerability allows an unauthenticated user to perform arbitrary file deletion and leak sensitive information.

8.8

CVE-2024-23467

  • EPSS 3.39%
  • Veröffentlicht 17.07.2024 15:15:11
  • Zuletzt bearbeitet 21.11.2024 08:57:46

The SolarWinds Access Rights Manager was susceptible to a Directory Traversal and Information Disclosure Vulnerability. This vulnerability allows an unauthenticated user to perform remote code execution.

8.8

CVE-2024-23466

  • EPSS 3.18%
  • Veröffentlicht 17.07.2024 15:15:11
  • Zuletzt bearbeitet 21.11.2024 08:57:46

SolarWinds Access Rights Manager (ARM) is susceptible to a Directory Traversal Remote Code Execution vulnerability. If exploited, this vulnerability allows an unauthenticated user to perform the actions with SYSTEM privileges.

8.8

CVE-2024-23465

  • EPSS 0.03%
  • Veröffentlicht 17.07.2024 15:15:10
  • Zuletzt bearbeitet 21.11.2024 08:57:45

The SolarWinds Access Rights Manager was found to be susceptible to an authentication bypass vulnerability. This vulnerability allows an unauthenticated user to gain domain admin access within the Active Directory environment.  

8

CVE-2024-28075

  • EPSS 73.56%
  • Veröffentlicht 14.05.2024 15:13:53
  • Zuletzt bearbeitet 10.02.2025 22:49:58

The SolarWinds Access Rights Manager was susceptible to Remote Code Execution Vulnerability. This vulnerability allows an authenticated user to abuse SolarWinds service resulting in remote code execution. We thank Trend Micro Zero Day Initiative (Z...

9.8

CVE-2024-23473

  • EPSS 0.14%
  • Veröffentlicht 14.05.2024 14:59:29
  • Zuletzt bearbeitet 10.02.2025 22:48:42

The SolarWinds Access Rights Manager was found to contain a hard-coded credential authentication bypass vulnerability. If exploited, this vulnerability allows access to the RabbitMQ management console. We thank Trend Micro Zero Day Initiative (ZDI)...

9.6

CVE-2024-23479

  • EPSS 1.3%
  • Veröffentlicht 15.02.2024 21:15:10
  • Zuletzt bearbeitet 21.11.2024 08:57:47

SolarWinds Access Rights Manager (ARM) was found to be susceptible to a Directory Traversal Remote Code Execution Vulnerability. If exploited, this vulnerability allows an unauthenticated user to achieve a Remote Code Execution.

8

CVE-2024-23478

  • EPSS 61.86%
  • Veröffentlicht 15.02.2024 21:15:09
  • Zuletzt bearbeitet 21.11.2024 08:57:47

SolarWinds Access Rights Manager (ARM) was found to be susceptible to a Remote Code Execution Vulnerability. If exploited, this vulnerability allows an authenticated user to abuse a SolarWinds service, resulting in remote code execution.

9.6

CVE-2024-23477

  • EPSS 1.41%
  • Veröffentlicht 15.02.2024 21:15:09
  • Zuletzt bearbeitet 21.11.2024 08:57:47

The SolarWinds Access Rights Manager (ARM) was found to be susceptible to a Directory Traversal Remote Code Execution Vulnerability. If exploited, this vulnerability allows an unauthenticated user to achieve a Remote Code Execution.