Severity: high (7.2)
First published: Wed Sep 13 2023
Last modified: Fri Sep 15 2023
CWE: 697 749
The SolarWinds Platform was susceptible to the Incorrect Comparison Vulnerability. This vulnerability allows users with administrative access to SolarWinds Web Console to execute arbitrary commands with NETWORK SERVICE privileges.
The vulnerability ID for the SolarWinds Platform vulnerability is CVE-2023-23845.
The severity of CVE-2023-23845 is high with a CVSS score of 7.2.
The affected software for CVE-2023-23845 is SolarWinds Orion Platform up to version 2023.3.1.
An attacker with administrative access to the SolarWinds Web Console can exploit CVE-2023-23845 to execute arbitrary commands with NETWORK SERVICE privileges.
You can find more information about CVE-2023-23845 in the SolarWinds release notes and security advisories.