ГлавнаяУязвимости → CVE-2023-50395
8высокая

CVE-2023-50395

→ есть в БДУ: BDU:2024-01338 (на русском)
Описание (на английском; русское — в БДУ выше)

SQL Injection Remote Code Execution Vulnerability was found using an update statement in the SolarWinds Platform. This vulnerability requires user authentication to be exploited

Затрагиваемое ПО
Solarwinds Solarwinds platform
CVSS
Балл8 — высокая
ВекторCVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://documentation.solarwinds.com/en/success_center/orionplatform/content/release_notes/solarwinds_platform_2024-1_release_notes.htmhttps://www.solarwinds.com/trust-center/security-advisories/CVE-2023-50395https://documentation.solarwinds.com/en/success_center/orionplatform/content/release_notes/solarwinds_platform_2024-1_release_notes.htmhttps://www.solarwinds.com/trust-center/security-advisories/CVE-2023-50395