Solarwinds Server Luki w zabezpieczeniach

Wersja

15.0	8
15.1	8
15.2	8
15.1.6.25	4
5.0.0	4

Przeciwdziałanie

Official Fix	16
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	18

Wykorzystywanie

High	2
Functional	0
Proof-of-Concept	4
Unproven	4
Not Defined	24

Wektor dostępu

Not Defined	0
Physical	0
Local	2
Adjacent	0
Network	32

Uwierzytelnianie

Not Defined	0
High	2
Low	6
None	26

Interakcja z użytkownikiem

Not Defined	0
Required	12
None	22

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	4
≤5	4
≤6	12
≤7	4
≤8	6
≤9	2
≤10	2

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	4
≤5	14
≤6	2
≤7	6
≤8	4
≤9	2
≤10	2

VulDB

≤1	0
≤2	0
≤3	2
≤4	4
≤5	6
≤6	10
≤7	2
≤8	8
≤9	0
≤10	2

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	4
≤6	4
≤7	4
≤8	6
≤9	0
≤10	4

CNA

≤1	0
≤2	0
≤3	0
≤4	2
≤5	2
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Sprzedawca

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploit 0-day

<1k	6
<2k	12
<5k	16
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Wykorzystaj dzisiaj

<1k	34
<2k	0
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Affected Versions (69): 5, 5.0.1, 5.0.2, 5.0.3, 5.0.4, 5.0.5, 5.0.6, 5.0.7, 5.0.8, 5.0.9, 5.0.11, 5.0.12, 5.0.13, 5.0.14, 5.0.15, 5.0.16, 5.0.17, 5.0.18, 5.0.19, 5.0.21, 5.0.22, 5.0.23, 5.0.24, 5.0.25, 5.0.26, 5.0.27, 5.0.28, 5.0.29, 5.0.31, 5.0.32, 5.0.33, 5.0.34, 5.0.35, 5.0.36, 5.0.37, 5.0.38, 5.0.39, 5.0.41, 5.0.42, 5.0.43, 5.0.44, 5.0.45, 5.0.46, 5.0.47, 5.0.48, 5.0.49, 5.0.51, 5.0.52, 5.0.53, 5.0.54, 5.0.55, 8.0, 8.1, 9.7, 9.7.1, 9.7.2, 10.4.0.1, 10.4.0.13, 14.0.1, 15.0, 15.0.1.2, 15.1, 15.1.6, 15.1.6.25, 15.1.7, 15.2, 15.3, 15.3.1, 2018-09-10

Link to Product Website: https://www.solarwinds.com/

Typ oprogramowania: File Transfer Software

Opublikowano	Base	Temp	Słaby punkt	0day	Dzisiaj	Wyk	Prz	CTI	CVE
2022-12-16	5.8	5.8	SolarWinds Serv-U FTP Server weak encryption	$0-$5k	$0-$5k	Not Defined	Official Fix	0.02	CVE-2021-35252
2021-10-29	4.8	4.7	SolarWinds Kiwi Syslog Server HTTP Header privilege escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-35237
2021-10-27	3.8	3.8	SolarWinds Kiwi Syslog Server SSL Cookie information disclosure	$0-$5k	$0-$5k	Not Defined	Official Fix	0.03	CVE-2021-35236
2021-10-27	5.3	5.2	SolarWinds Kiwi Syslog Server HTTP Method information disclosure	$0-$5k	$0-$5k	Not Defined	Official Fix	0.02	CVE-2021-35233
2021-10-27	5.3	5.2	SolarWinds Kiwi Syslog Server ASP.NET Debugging information disclosure	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-35235
2021-10-25	7.0	6.8	SolarWinds Kiwi Syslog Server Installation Wizard privilege escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-35231
2021-08-31	7.5	7.2	SolarWinds Serv-U File Server Failure privilege escalation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-35223
2020-07-07	6.4	6.1	SolarWinds Serv-U File Server HTTP Response information disclosure	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2020-15576
2020-07-07	5.2	4.9	SolarWinds Serv-U File Server cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2020-15575
2020-07-07	6.4	6.1	SolarWinds Serv-U File Server Cookie weak encryption	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2020-15574

24 więcej wpisów nie jest pokazywanych

🔒 Login Required

You need to signup and login to see more of the remaining 24 results.

więcej wpisów autorstwa Solarwinds

◂ PoprzedniPrzeglądKolejny ▸

Do you need the next level of professionalism?

Upgrade your account now!