What is the vulnerability ID for the SolarWinds Platform vulnerability?

The vulnerability ID for the SolarWinds Platform vulnerability is CVE-2023-23845.

What is the severity of CVE-2023-23845?

The severity of CVE-2023-23845 is high with a CVSS score of 7.2.

What is the affected software for CVE-2023-23845?

The affected software for CVE-2023-23845 is SolarWinds Orion Platform up to version 2023.3.1.

How can an attacker exploit CVE-2023-23845?

An attacker with administrative access to the SolarWinds Web Console can exploit CVE-2023-23845 to execute arbitrary commands with NETWORK SERVICE privileges.

Where can I find more information about CVE-2023-23845?

You can find more information about CVE-2023-23845 in the SolarWinds release notes and security advisories.

vuln-group

CVE-2023-23845

Severity: high (7.2)

First published: Wed Sep 13 2023

Last modified: Fri Sep 15 2023

CWE: 697 749

The SolarWinds Platform was susceptible to the Incorrect Comparison Vulnerability. This vulnerability allows users with administrative access to SolarWinds Web Console to execute arbitrary commands with NETWORK SERVICE privileges.

Any of

Solarwinds Orion Platform
<2023.3.1

FAQ

What is the vulnerability ID for the SolarWinds Platform vulnerability?
The vulnerability ID for the SolarWinds Platform vulnerability is CVE-2023-23845.
What is the severity of CVE-2023-23845?
The severity of CVE-2023-23845 is high with a CVSS score of 7.2.
What is the affected software for CVE-2023-23845?
The affected software for CVE-2023-23845 is SolarWinds Orion Platform up to version 2023.3.1.
How can an attacker exploit CVE-2023-23845?
An attacker with administrative access to the SolarWinds Web Console can exploit CVE-2023-23845 to execute arbitrary commands with NETWORK SERVICE privileges.
Where can I find more information about CVE-2023-23845?
You can find more information about CVE-2023-23845 in the SolarWinds release notes and security advisories.

Reference Links

collector/nvd-api
vendor/solarwinds
product/orion platform
canonical/solarwinds orion platform

FAQ

What is the vulnerability ID for the SolarWinds Platform vulnerability?
The vulnerability ID for the SolarWinds Platform vulnerability is CVE-2023-23845.
What is the severity of CVE-2023-23845?
The severity of CVE-2023-23845 is high with a CVSS score of 7.2.
What is the affected software for CVE-2023-23845?
The affected software for CVE-2023-23845 is SolarWinds Orion Platform up to version 2023.3.1.
How can an attacker exploit CVE-2023-23845?
An attacker with administrative access to the SolarWinds Web Console can exploit CVE-2023-23845 to execute arbitrary commands with NETWORK SERVICE privileges.
Where can I find more information about CVE-2023-23845?
You can find more information about CVE-2023-23845 in the SolarWinds release notes and security advisories.

CVE-2023-23845

Any of

FAQ

What is the vulnerability ID for the SolarWinds Platform vulnerability?

What is the severity of CVE-2023-23845?

What is the affected software for CVE-2023-23845?

How can an attacker exploit CVE-2023-23845?

Where can I find more information about CVE-2023-23845?

Reference Links

Navigation

FAQ

What is the vulnerability ID for the SolarWinds Platform vulnerability?

What is the severity of CVE-2023-23845?

What is the affected software for CVE-2023-23845?

How can an attacker exploit CVE-2023-23845?

Where can I find more information about CVE-2023-23845?