Lucene search
HistoryApr 18, 2024 - 9:15 a.m.
CVE-2024-29001
solarwinds
swql injection
user interface
authentication
user interaction
vulnerability
CVSS3
7.5
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:L
AI Score
7.7
Confidence
High
EPSS
0
Percentile
9.0%
A SolarWinds Platform SWQL Injection Vulnerability was identified in the user interface. This vulnerability requires authentication and user interaction to be exploited.
Related
cve
cve
CVE-2024-29001
2024-04-18 09:15:11
vulnrichment
vulnrichment
CVE-2024-29001 SolarWinds Platform SWQL Injection Vulnerability
2024-04-18 09:06:41
cvelist
cvelist
CVE-2024-29001 SolarWinds Platform SWQL Injection Vulnerability
2024-04-18 09:06:41
nessus
nessus
SolarWinds Platform 2024.0 < 2024.1.1 Multiple Vulnerabilities XSS
2024-04-19 00:00:00
CVSS3
7.5
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:L
AI Score
7.7
Confidence
High
EPSS
0
Percentile
9.0%
Related for NVD:CVE-2024-29001