cbcvebase.
CVE-2023-35188
published 2024-02-06

CVE-2023-35188: SQL Injection Remote Code Execution Vulnerability was found using a create statement in the SolarWinds Platform. This vulnerability requires user…

PriorityP348high8CVSS 3.1
AVAACLPRLUINSUCHIHAH
EPSS
1.54%
71.7th percentile
SQL Injection Remote Code Execution Vulnerability was found using a create statement in the SolarWinds Platform. This vulnerability requires user authentication to be exploited.

Affected

2 ranges
VendorProductVersion rangeFixed in
solarwindssolarwinds_platform< 2024.12024.1
solarwindssolarwinds_platform
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.