Solarwinds

Access Rights Manager

32 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.6

CVE-2024-23476

  • EPSS 1.94%
  • Veröffentlicht 15.02.2024 21:15:09
  • Zuletzt bearbeitet 21.11.2024 08:57:47

The SolarWinds Access Rights Manager (ARM) was found to be susceptible to a Directory Traversal Remote Code Execution Vulnerability. If exploited, this vulnerability allows an unauthenticated user to achieve the Remote Code Execution.

9

CVE-2023-40057

  • EPSS 11.68%
  • Veröffentlicht 15.02.2024 21:15:08
  • Zuletzt bearbeitet 21.11.2024 08:18:37

The SolarWinds Access Rights Manager was found to be susceptible to a Remote Code Execution Vulnerability. If exploited, this vulnerability allows an authenticated user to abuse a SolarWinds service resulting in remote code execution.

6.5

CVE-2023-40058

  • EPSS 0.27%
  • Veröffentlicht 21.12.2023 17:15:07
  • Zuletzt bearbeitet 21.11.2024 08:18:37

Sensitive data was added to our public-facing knowledgebase that, if exploited, could be used to access components of Access Rights Manager (ARM) if the threat actor is in the same environment.

9.8

CVE-2023-35187

  • EPSS 2.02%
  • Veröffentlicht 19.10.2023 15:15:09
  • Zuletzt bearbeitet 21.11.2024 08:08:07

The SolarWinds Access Rights Manager was susceptible to a Directory Traversal Remote Code Vulnerability. This vulnerability allows an unauthenticated user to achieve the Remote Code Execution.

8.8

CVE-2023-35186

  • EPSS 9.61%
  • Veröffentlicht 19.10.2023 15:15:09
  • Zuletzt bearbeitet 21.11.2024 08:08:07

The SolarWinds Access Rights Manager was susceptible to Remote Code Execution Vulnerability. This vulnerability allows an authenticated user to abuse SolarWinds service resulting in remote code execution.

6.8

CVE-2023-35185

  • EPSS 0.15%
  • Veröffentlicht 19.10.2023 15:15:09
  • Zuletzt bearbeitet 21.11.2024 08:08:07

The SolarWinds Access Rights Manager was susceptible to a Directory Traversal Remote Code Vulnerability using SYSTEM privileges.

9.8

CVE-2023-35184

  • EPSS 10.6%
  • Veröffentlicht 19.10.2023 15:15:09
  • Zuletzt bearbeitet 21.11.2024 08:08:07

The SolarWinds Access Rights Manager was susceptible to Remote Code Execution Vulnerability. This vulnerability allows an unauthenticated user to abuse a SolarWinds service resulting in a remote code execution.

7.8

CVE-2023-35183

  • EPSS 0.08%
  • Veröffentlicht 19.10.2023 15:15:09
  • Zuletzt bearbeitet 21.11.2024 08:08:06

The SolarWinds Access Rights Manager was susceptible to Privilege Escalation Vulnerability. This vulnerability allows authenticated users to abuse local resources to Privilege Escalation.

9.8

CVE-2023-35182

  • EPSS 4.65%
  • Veröffentlicht 19.10.2023 15:15:09
  • Zuletzt bearbeitet 21.11.2024 08:08:06

The SolarWinds Access Rights Manager was susceptible to Remote Code Execution Vulnerability. This vulnerability can be abused by unauthenticated users on SolarWinds ARM Server.

7.8

CVE-2023-35181

  • EPSS 0.11%
  • Veröffentlicht 19.10.2023 15:15:08
  • Zuletzt bearbeitet 21.11.2024 08:08:06

The SolarWinds Access Rights Manager was susceptible to Privilege Escalation Vulnerability. This vulnerability allows users to abuse incorrect folder permission resulting in Privilege Escalation.