The SolarWinds Network Configuration Manager was susceptible to the Exposure of Sensitive Information Vulnerability. This vulnerability allows users with administrative access to SolarWinds Web Console to obtain sensitive information.
References
Configurations
History
21 Nov 2024, 08:05
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 4.5 |
References | () https://documentation.solarwinds.com/en/success_center/ncm/content/release_notes/ncm_2023-4_release_notes.htm - Release Notes | |
References | () https://www.solarwinds.com/trust-center/security-advisories/CVE-2023-33228 - Vendor Advisory |
09 Nov 2023, 13:17
Type | Values Removed | Values Added |
---|---|---|
First Time |
Solarwinds
Solarwinds network Configuration Manager |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 4.9 |
CPE | cpe:2.3:a:solarwinds:network_configuration_manager:*:*:*:*:*:*:*:* | |
References | (MISC) https://www.solarwinds.com/trust-center/security-advisories/CVE-2023-33228 - Vendor Advisory | |
References | (MISC) https://documentation.solarwinds.com/en/success_center/ncm/content/release_notes/ncm_2023-4_release_notes.htm - Release Notes |
01 Nov 2023, 16:16
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-11-01 16:15
Updated : 2024-11-21 08:05
NVD link : CVE-2023-33228
Mitre link : CVE-2023-33228
CVE.ORG link : CVE-2023-33228
JSON object : View
Products Affected
solarwinds
- network_configuration_manager
CWE
CWE-311
Missing Encryption of Sensitive Data