cb
cvebase
.
~
/
products
/
solarwinds
/
orion
Search CVEs, products, detections…
⌘K
pipeline live
Digest
Docs
Home
/
Products
/
solarwinds
/
Solarwinds Orion
Solarwinds Orion vulnerabilities
1 known vulnerability affecting
solarwinds/orion
.
Track
Version
All versions
Total CVEs
1
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM
1
Vulnerabilities
Sort
Most important
Highest Priority
Highest EPSS
Highest CVSS
Newest
Oldest
Page 1 of 1
CVE-2021-35248
P4
MEDIUM
CVSS 4.3
≥ 2020.2.6 HF 2 and previous versions, < 2020.2.6 HF 3
2021-12-20
CVE-2021-35248 [MEDIUM] CWE-732 CVE-2021-35248: It has been reported that any Orion user, e.g. guest accounts can query the Orion.UserSettings entit It has been reported that any Orion user, e.g. guest accounts can query the Orion.UserSettings entity and enumerate users and their basic settings.
nvd
Solarwinds Orion vulnerabilities | cvebase