Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Access_rights_manager
(Solarwinds)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 32 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2024-07-17 | CVE-2024-23468 | The SolarWinds Access Rights Manager was susceptible to a Directory Traversal and Information Disclosure Vulnerability. This vulnerability allows an unauthenticated user to perform arbitrary file deletion and leak sensitive information. | Access_rights_manager | 9.4 | ||
| 2024-07-17 | CVE-2024-23469 | SolarWinds Access Rights Manager (ARM) is susceptible to a Remote Code Execution vulnerability. If exploited, this vulnerability allows an unauthenticated user to perform the actions with SYSTEM privileges. | Access_rights_manager | 9.8 | ||
| 2024-07-17 | CVE-2024-23470 | The SolarWinds Access Rights Manager was found to be susceptible to a pre-authentication remote code execution vulnerability. If exploited, this vulnerability allows an unauthenticated user to run commands and executables. | Access_rights_manager | 9.8 | ||
| 2024-07-17 | CVE-2024-23471 | The SolarWinds Access Rights Manager was found to be susceptible to a Remote Code Execution Vulnerability. If exploited, this vulnerability allows an authenticated user to abuse a SolarWinds service resulting in remote code execution. | Access_rights_manager | 9.8 | ||
| 2024-07-17 | CVE-2024-23472 | SolarWinds Access Rights Manager (ARM) is susceptible to Directory Traversal vulnerability. This vulnerability allows an authenticated user to arbitrary read and delete files in ARM. | Access_rights_manager | 8.8 | ||
| 2024-07-17 | CVE-2024-23474 | The SolarWinds Access Rights Manager was found to be susceptible to an Arbitrary File Deletion and Information Disclosure vulnerability. | Access_rights_manager | 9.8 | ||
| 2024-07-17 | CVE-2024-23475 | The SolarWinds Access Rights Manager was susceptible to a Directory Traversal and Information Disclosure Vulnerability. This vulnerability allows an unauthenticated user to perform arbitrary file deletion and leak sensitive information. | Access_rights_manager | 9.8 | ||
| 2024-07-17 | CVE-2024-28074 | It was discovered that a previous vulnerability was not completely fixed with SolarWinds Access Rights Manager. While some controls were implemented the researcher was able to bypass these and use a different method to exploit the vulnerability. | Access_rights_manager | 9.8 | ||
| 2024-07-17 | CVE-2024-28992 | The SolarWinds Access Rights Manager was susceptible to a Directory Traversal and Information Disclosure Vulnerability. This vulnerability allows an unauthenticated user to perform arbitrary file deletion and leak sensitive information. | Access_rights_manager | 9.4 | ||
| 2024-07-17 | CVE-2024-28993 | The SolarWinds Access Rights Manager was susceptible to a Directory Traversal and Information Disclosure Vulnerability. This vulnerability allows an unauthenticated user to perform arbitrary file deletion and leak sensitive information. | Access_rights_manager | 9.4 |