SB2021122101 - Multiple vulnerabilities in SolarWinds Orion Platform

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2021122101

SB2021122101 - Multiple vulnerabilities in SolarWinds Orion Platform

Published: December 21, 2021 Updated: December 27, 2021

Security Bulletin ID SB2021122101
Severity
Medium
Patch available
YES
Number of vulnerabilities 3
Exploitation vector Remote access
Highest impact Code execution

Breakdown by Severity

Medium 67% Low 33%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 3 secuirty vulnerabilities.


1) Improper access control (CVE-ID: CVE-2021-35248)

The vulnerability allows a remote user to gain access to sensitive information.

The vulnerability exists due to improper access restrictions. Any Orion user, including a guest account, can query the Orion.UserSettings entity and enumerate users and their basic settings.


2) Permissions, Privileges, and Access Controls (CVE-ID: CVE-2021-35244)

The vulnerability allows a remote user to escalate privileges within the application.

The vulnerability exists due to application does not properly impose security restrictions. A remote user with Orion alert management rights can use this vulnerability to perform an unrestricted file upload causing a remote code execution.


3) SQL injection (CVE-ID: CVE-2021-35234)

The vulnerability allows a remote user to execute arbitrary SQL queries in database.

The vulnerability exists due to insufficient sanitization of user-supplied data. A remote user can send a specially crafted request to the affected application and exfiltrate data from the application database. Successful exploitation of the vulnerability may lead to privilege escalation.


Remediation

Install update from vendor's website.

References