CVE-2023-33228

The SolarWinds Network Configuration Manager was susceptible to the Exposure of Sensitive Information Vulnerability. This vulnerability allows users with administrative access to SolarWinds Web Console to obtain sensitive information.
Configurations

Configuration 1 (hide)

cpe:2.3:a:solarwinds:network_configuration_manager:*:*:*:*:*:*:*:*

History

21 Nov 2024, 08:05

Type Values Removed Values Added
CVSS v2 : unknown
v3 : 4.9
v2 : unknown
v3 : 4.5
References () https://documentation.solarwinds.com/en/success_center/ncm/content/release_notes/ncm_2023-4_release_notes.htm - Release Notes () https://documentation.solarwinds.com/en/success_center/ncm/content/release_notes/ncm_2023-4_release_notes.htm - Release Notes
References () https://www.solarwinds.com/trust-center/security-advisories/CVE-2023-33228 - Vendor Advisory () https://www.solarwinds.com/trust-center/security-advisories/CVE-2023-33228 - Vendor Advisory

09 Nov 2023, 13:17

Type Values Removed Values Added
First Time Solarwinds
Solarwinds network Configuration Manager
CVSS v2 : unknown
v3 : 4.5
v2 : unknown
v3 : 4.9
CPE cpe:2.3:a:solarwinds:network_configuration_manager:*:*:*:*:*:*:*:*
References (MISC) https://www.solarwinds.com/trust-center/security-advisories/CVE-2023-33228 - (MISC) https://www.solarwinds.com/trust-center/security-advisories/CVE-2023-33228 - Vendor Advisory
References (MISC) https://documentation.solarwinds.com/en/success_center/ncm/content/release_notes/ncm_2023-4_release_notes.htm - (MISC) https://documentation.solarwinds.com/en/success_center/ncm/content/release_notes/ncm_2023-4_release_notes.htm - Release Notes

01 Nov 2023, 16:16

Type Values Removed Values Added
New CVE

Information

Published : 2023-11-01 16:15

Updated : 2024-11-21 08:05


NVD link : CVE-2023-33228

Mitre link : CVE-2023-33228

CVE.ORG link : CVE-2023-33228


JSON object : View

Products Affected

solarwinds

  • network_configuration_manager
CWE
CWE-311

Missing Encryption of Sensitive Data