What is CVE-2023-23840?

CVE-2023-23840 refers to the Incorrect Comparison Vulnerability present in the SolarWinds Platform.

How does CVE-2023-23840 impact the SolarWinds Platform?

CVE-2023-23840 allows users with administrative access to the SolarWinds Web Console to execute arbitrary commands with NETWORK SERVICE privileges.

What is the severity of CVE-2023-23840?

CVE-2023-23840 has a severity rating of 7.2 (high).

Which version of the SolarWinds Platform is affected by CVE-2023-23840?

The SolarWinds Orion Platform up to version 2023.3.1 is affected by CVE-2023-23840.

How can I find more information about CVE-2023-23840?

You can find more information about CVE-2023-23840 in the SolarWinds documentation and security advisory.

vuln-group

CVE-2023-23840

Severity: high (7.2)

First published: Wed Sep 13 2023

Last modified: Fri Sep 15 2023

CWE: 697 749

The SolarWinds Platform was susceptible to the Incorrect Comparison Vulnerability. This vulnerability allows users with administrative access to SolarWinds Web Console to execute arbitrary commands with NETWORK SERVICE privileges.

Any of

Solarwinds Orion Platform
<2023.3.1

FAQ

What is CVE-2023-23840?
CVE-2023-23840 refers to the Incorrect Comparison Vulnerability present in the SolarWinds Platform.
How does CVE-2023-23840 impact the SolarWinds Platform?
CVE-2023-23840 allows users with administrative access to the SolarWinds Web Console to execute arbitrary commands with NETWORK SERVICE privileges.
What is the severity of CVE-2023-23840?
CVE-2023-23840 has a severity rating of 7.2 (high).
Which version of the SolarWinds Platform is affected by CVE-2023-23840?
The SolarWinds Orion Platform up to version 2023.3.1 is affected by CVE-2023-23840.
How can I find more information about CVE-2023-23840?
You can find more information about CVE-2023-23840 in the SolarWinds documentation and security advisory.

Reference Links

collector/nvd-api
vendor/solarwinds
product/orion platform
canonical/solarwinds orion platform

FAQ

What is CVE-2023-23840?
CVE-2023-23840 refers to the Incorrect Comparison Vulnerability present in the SolarWinds Platform.
How does CVE-2023-23840 impact the SolarWinds Platform?
CVE-2023-23840 allows users with administrative access to the SolarWinds Web Console to execute arbitrary commands with NETWORK SERVICE privileges.
What is the severity of CVE-2023-23840?
CVE-2023-23840 has a severity rating of 7.2 (high).
Which version of the SolarWinds Platform is affected by CVE-2023-23840?
The SolarWinds Orion Platform up to version 2023.3.1 is affected by CVE-2023-23840.
How can I find more information about CVE-2023-23840?
You can find more information about CVE-2023-23840 in the SolarWinds documentation and security advisory.

CVE-2023-23840

Any of

FAQ

What is CVE-2023-23840?

How does CVE-2023-23840 impact the SolarWinds Platform?

What is the severity of CVE-2023-23840?

Which version of the SolarWinds Platform is affected by CVE-2023-23840?

How can I find more information about CVE-2023-23840?

Reference Links

Navigation

FAQ

What is CVE-2023-23840?

How does CVE-2023-23840 impact the SolarWinds Platform?

What is the severity of CVE-2023-23840?

Which version of the SolarWinds Platform is affected by CVE-2023-23840?

How can I find more information about CVE-2023-23840?