This vulnerability allows attackers to impersonate users and perform arbitrary actions leading to a Remote Code Execution (RCE) from the Alerts Settings page.
References
Configurations
Configuration 1 (hide)
AND |
|
History
No history.
Information
Published : 2021-08-31 13:15
Updated : 2024-02-28 18:28
NVD link : CVE-2021-35222
Mitre link : CVE-2021-35222
CVE.ORG link : CVE-2021-35222
JSON object : View
Products Affected
solarwinds
- orion_platform
microsoft
- windows
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')