CVE-2024-23467
CVSS 3.1 Score 9.8 of 10 (high)
Details
Published Jul 17, 2024
Updated: Jul 18, 2024
CWE ID 22
Summary
CVE-2024-23467 is a critical vulnerability affecting SolarWinds Access Rights Manager. This issue involves a Directory Traversal and Information Disclosure weakness. Unauthenticated users can take advantage of this flaw to execute remote code on the affected system, posing a significant threat to data security. The vulnerability allows illicit access to sensitive information, potentially leading to serious consequences. SolarWinds urges users to apply the available patch to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Solarwinds Access Rights Manager
Affected Vendors
- SolarWinds Inc.