Solarwinds vulnerabilities
2 known vulnerabilities affecting solarwinds/solarwinds.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2024-52606P3CRITICALCVSS 9.8v2024.4.1 and previous versions2025-02-11
CVE-2024-52606 [CRITICAL] CWE-918 CVE-2024-52606: SolarWinds Platform is affected by server-side request forgery vulnerability. Proper input sanitatio
SolarWinds Platform is affected by server-side request forgery vulnerability. Proper input sanitation was not applied allowing for the possibility of a malicious web request.
nvd
CVE-2021-35228P4MEDIUMCVSS 4.7≥ DPA 2021.3.7388, < 2021.3.73882021-10-21
CVE-2021-35228 [MEDIUM] CWE-79 CVE-2021-35228: This vulnerability occurred due to missing input sanitization for one of the output fields that is e
This vulnerability occurred due to missing input sanitization for one of the output fields that is extracted from headers on specific section of page causing a reflective cross site scripting attack. An attacker would need to perform a Man in the Middle attack in order to change header for a remote victim.
nvd