Description

Invicti determined that it was possible to access SolarWinds Orion's sensitive files without authentication with a specially crafted HTTP request.

Remediation

Upgrade to the latest version of SolarWinds Orion

References

SolarWinds Orion API authentication bypass allows remote command execution

Related Vulnerabilities

Strapi Cognito provider Authentication Bypass (CVE-2023-22893)

WordPress Plugin MailPoet Newsletters (Previous) Security Bypass (2.8.1)

WordPress Plugin Restricted Site Access Security Bypass (7.3.1)

WordPress Plugin Ultimate Addons for Elementor Security Bypass (1.24.1)

WordPress Plugin WooCommerce Product Feed for Google, Facebook, eBay and Many More Security Bypass (2.2.26)

Severity

High

Classification

CVE-2020-10148 CWE-287 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Tags

Authentication Bypass