Podatność CVE-2024-28992


Publikacja: 2024-07-17

Opis:
The SolarWinds Access Rights Manager was susceptible to a Directory Traversal and Information Disclosure Vulnerability. This vulnerability allows an unauthenticated user to perform arbitrary file deletion and leak sensitive information.

Typ:

CWE-287

(Improper Authentication)

 Referencje:
https://documentation.solarwinds.com/en/success_center/arm/content/release_notes/arm_2024-3_release_notes.htm

Copyright 2024, cxsecurity.com

 

Back to Top