First published: Wed Feb 03 2021(Updated: )
The Collector Service in SolarWinds Orion Platform before 2020.2.4 uses MSMQ (Microsoft Message Queue) and doesn't set permissions on its private queues. As a result, remote unauthenticated clients can send messages to TCP port 1801 that the Collector Service will process. Additionally, upon processing of such messages, the service deserializes them in insecure manner, allowing remote arbitrary code execution as LocalSystem.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
SolarWinds Orion Platform | <2020.2.4 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this security issue in SolarWinds Orion Platform is CVE-2021-25274.
The severity of CVE-2021-25274 is critical with a severity value of 9.8.
The Collector Service in SolarWinds Orion Platform before 2020.2.4 uses MSMQ (Microsoft Message Queue).
CVE-2021-25274 allows remote unauthenticated clients to send messages to TCP port 1801 that the Collector Service will process.
To fix the vulnerability CVE-2021-25274, it is recommended to update to SolarWinds Orion Platform version 2020.2.4 or above.