First published: Sun Jan 26 2020(Updated: )
SolarWinds N-central before 12.1 SP1 HF5 and 12.2 before SP1 HF2 allows remote attackers to retrieve cleartext domain admin credentials from the Agent & Probe settings, and obtain other sensitive information. The attacker can use a customer ID to self register and read any aspects of the agent/appliance configuration.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
SolarWinds N-Central | <12.1.1.404 | |
SolarWinds N-Central | >=12.2<12.2.1.280 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.