CVE-2022-36963

The SolarWinds Platform was susceptible to the Command Injection Vulnerability. This vulnerability allows a remote adversary with a valid SolarWinds Platform admin account to execute arbitrary commands.
Configurations

Configuration 1 (hide)

cpe:2.3:a:solarwinds:orion_platform:*:*:*:*:*:*:*:*

History

03 Aug 2023, 17:15

Type Values Removed Values Added
Summary The SolarWinds Platform was susceptible to the Command Injection Vulnerability. This vulnerability allows a remote adversary with a valid SolarWinds Platform admin account to execute arbitrary commands. The SolarWinds Platform was susceptible to the Command Injection Vulnerability. This vulnerability allows a remote adversary with a valid SolarWinds Platform admin account to execute arbitrary commands.

Information

Published : 2023-04-21 20:15

Updated : 2024-02-28 20:13


NVD link : CVE-2022-36963

Mitre link : CVE-2022-36963

CVE.ORG link : CVE-2022-36963


JSON object : View

Products Affected

solarwinds

  • orion_platform
CWE
CWE-94

Improper Control of Generation of Code ('Code Injection')