CVE-2024-23467

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jul 17, 2024
Updated: Jul 18, 2024
CWE ID 22

Summary

CVE-2024-23467 is a critical vulnerability affecting SolarWinds Access Rights Manager. This issue involves a Directory Traversal and Information Disclosure weakness. Unauthenticated users can take advantage of this flaw to execute remote code on the affected system, posing a significant threat to data security. The vulnerability allows illicit access to sensitive information, potentially leading to serious consequences. SolarWinds urges users to apply the available patch to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Solarwinds Access Rights Manager

Affected Vendors

  • SolarWinds Inc.