The SolarWinds Network Configuration Manager was susceptible to the Exposure of Sensitive Information Vulnerability. This vulnerability allows users with administrative access to SolarWinds Web Console to obtain sensitive information.
References
Configurations
History
09 Nov 2023, 13:17
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://www.solarwinds.com/trust-center/security-advisories/CVE-2023-33228 - Vendor Advisory | |
References | (MISC) https://documentation.solarwinds.com/en/success_center/ncm/content/release_notes/ncm_2023-4_release_notes.htm - Release Notes | |
First Time |
Solarwinds
Solarwinds network Configuration Manager |
|
CPE | cpe:2.3:a:solarwinds:network_configuration_manager:*:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 4.9 |
01 Nov 2023, 16:16
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-11-01 16:15
Updated : 2024-02-28 20:33
NVD link : CVE-2023-33228
Mitre link : CVE-2023-33228
CVE.ORG link : CVE-2023-33228
JSON object : View
Products Affected
solarwinds
- network_configuration_manager
CWE
CWE-311
Missing Encryption of Sensitive Data