Directory traversal

2023-10-1915:15:00

PRIOn knowledge base

www.prio-n.com

solarwinds

access rights manager

directory traversal

vulnerability

remote code execution

nvd

9.5 High

AI Score

Confidence

High

0.014 Low

EPSS

Percentile

86.6%

JSON

The SolarWinds Access Rights Manager was susceptible to a Directory Traversal Remote Code Vulnerability. This vulnerability allows an unauthenticated user to achieve the Remote Code Execution.

CPENameOperatorVersion
access_rights_managerle2023.2.0.73

CPE	Name	Operator	Version
	access_rights_manager	le	2023.2.0.73

References

documentation.solarwinds.com/en/success_center/arm/content/release_notes/arm_2023-2-1_release_notes.htm

www.solarwinds.com/trust-center/security-advisories/CVE-2023-35187