First published: Tue Apr 25 2023(Updated: )
Directory traversal and file enumeration vulnerability which allowed users to enumerate to different folders of the server.
Credit: psirt@solarwinds.com psirt@solarwinds.com
Affected Software | Affected Version | How to fix |
---|---|---|
SolarWinds Database Performance Analyzer | <2023.2 | |
Microsoft Windows |
SolarWinds recommends upgrading to the latest version of DPA as soon as it becomes available.
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-23838 is a directory traversal and file enumeration vulnerability that allows users to enumerate to different folders of the server.
The SolarWinds Database Performance Analyzer (DPA) version up to 2023.2 is affected by CVE-2023-23838.
CVE-2023-23838 has a severity level of medium with a CVSS score of 6.5.
To fix CVE-2023-23838, it is recommended to update to the latest version of SolarWinds Database Performance Analyzer (DPA) which addresses the vulnerability.
More information about CVE-2023-23838 can be found in the release notes of SolarWinds Database Performance Analyzer (DPA) version 2023.2 and the SolarWinds Trust Center.