CVE-2023-23845

CVSS V2 None CVSS V3 None

Description

The SolarWinds Platform was susceptible to the Incorrect Comparison Vulnerability. This vulnerability allows users with administrative access to SolarWinds Web Console to execute arbitrary commands with NETWORK SERVICE privileges.

Overview

CVE ID
CVE-2023-23845

Assigner
SolarWinds

Vulnerability Status
PUBLISHED

Published Version
2023-09-13T22:07:47.139Z

Last Modified Date
2023-12-28T17:03:05.656Z

Weakness Enumerations

CWE	URL
CWE-697	http://cwe.mitre.org/data/definitions/697.html

References

Reference URL	Reference Tags
https://www.solarwinds.com/trust-center/security-advisories/CVE-2023-23845
https://documentation.solarwinds.com/en/success_center/orionplatform/content/release_notes/solarwinds_platform_2023-3-1_release_notes.htm

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2023-23845
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-23845

History

Created	Old Value	New Value	Data Type	Notes
2024-06-25 08:53:33				Added to TrackCVE