SolarWinds Orion Platform prior 2020.2.4 SQL Server Backend access control

entryeditHistoryDiffjsonxmlCTI

A vulnerability has been found in SolarWinds Orion Platform and classified as problematic. Affected by this vulnerability is an unknown functionality of the component SQL Server Backend. Upgrading to version 2020.2.4 eliminates this vulnerability.

Field02/04/2021 10:46 AM02/23/2021 01:25 PM
vendorSolarWindsSolarWinds
nameOrion PlatformOrion Platform
componentSQL Server BackendSQL Server Backend
cwe284 (privilege escalation)284 (privilege escalation)
risk22
cvss3_vuldb_avLL
cvss3_vuldb_acLL
cvss3_vuldb_prLL
cvss3_vuldb_uiNN
cvss3_vuldb_sUU
cvss3_vuldb_cLL
cvss3_vuldb_iNN
cvss3_vuldb_aNN
cvss3_vuldb_rlOO
cvss3_vuldb_rcCC
urlhttps://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/full-system-control-with-new-solarwinds-orion-based-and-serv-u-ftp-vulnerabilities/https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/full-system-control-with-new-solarwinds-orion-based-and-serv-u-ftp-vulnerabilities/
nameUpgradeUpgrade
upgrade_version2020.2.42020.2.4
cveCVE-2021-25275CVE-2021-25275
date1612393200 (02/04/2021)1612393200 (02/04/2021)
cvss2_vuldb_avLL
cvss2_vuldb_acLL
cvss2_vuldb_ciPP
cvss2_vuldb_iiNN
cvss2_vuldb_aiNN
cvss2_vuldb_rcCC
cvss2_vuldb_rlOFOF
cvss2_vuldb_auSS
cvss2_vuldb_eNDND
cvss3_vuldb_eXX
cvss2_vuldb_basescore1.71.7
cvss2_vuldb_tempscore1.71.5
cvss3_vuldb_basescore3.33.3
cvss3_vuldb_tempscore3.33.2
cvss3_meta_basescore3.33.3
cvss3_meta_tempscore3.33.2
price_0day$0-$5k$0-$5k
cve_assigned1610665200
cve_nvd_summarySolarWinds Orion Platform before 2020.2.4, as used by various SolarWinds products, installs and uses a SQL Server backend, and stores database credentials to access this backend in a file readable by unprivileged users. As a result, any user having access to the filesystem can read database login details from that file, including the login name and its associated password. Then, the credentials can be used to get database owner access to the SWNetPerfMon.DB database. This gives access to the data collected by SolarWinds applications, and leads to admin access to the applications by inserting or changing authentication data stored in the Accounts table of the database.

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!