ГлавнаяУязвимости → CVE-2024-0692
8.8высокая

CVE-2024-0692

→ есть в БДУ: BDU:2024-01721 (на русском)
Описание (на английском; русское — в БДУ выше)

The SolarWinds Security Event Manager was susceptible to Remote Code Execution Vulnerability. This vulnerability allows an unauthenticated user to abuse SolarWinds’ service, resulting in remote code execution.

Затрагиваемое ПО
Solarwinds Security event manager
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://documentation.solarwinds.com/en/success_center/sem/content/release_notes/sem_2023-4-1_release_notes.htmhttps://www.solarwinds.com/trust-center/security-advisories/CVE-2024-0692https://documentation.solarwinds.com/en/success_center/sem/content/release_notes/sem_2023-4-1_release_notes.htmhttps://www.solarwinds.com/trust-center/security-advisories/CVE-2024-0692