Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
solarwinds orion network performance monitor vulnerabilities and exploits
(subscribe to this query)
6.4
CVSSv3
CVE-2021-35225
Each authenticated Orion Platform user in a MSP (Managed Service Provider) environment can view and browse all NetPath Services from all that MSP's customers. This can lead to any user having a limited insight into other customer's infrastructure and potential data cros...
Solarwinds Network Performance Monitor
Solarwinds Network Performance Monitor 2020.2.6
5.5
CVSSv3
CVE-2019-12864
SolarWinds Orion Platform 2018.4 HF3 (NPM 12.4, NetPath 1.1.4) is vulnerable to Information Leakage, because of improper error handling with stack traces, as demonstrated by discovering a full pathname upon a 500 Internal Server Error via the api2/swis/query?lang=en-us&swAler...
Solarwinds Netpath 1.1.4
Solarwinds Orion Platform 2018.4
Solarwinds Network Performance Monitor 12.4
5.4
CVSSv3
CVE-2020-14006
Solarwinds Orion (with Web Console WPM 2019.4.1, and Orion Platform HF4 or NPM HF2 2019.4) allows XSS via a Responsible Team.
Solarwinds Orion Network Performance Monitor 2019.4
Solarwinds Orion Web Performance Monitor 2019.4.1
5.4
CVSSv3
CVE-2020-14007
Solarwinds Orion (with Web Console WPM 2019.4.1, and Orion Platform HF4 or NPM HF2 2019.4) allows XSS via a name of an alert definition.
Solarwinds Orion Network Performance Monitor 2019.4
Solarwinds Orion Web Performance Monitor 2019.4.1
5.4
CVSSv3
CVE-2019-12954
SolarWinds Network Performance Monitor (Orion Platform 2018, NPM 12.3, NetPath 1.1.3) allows XSS by authenticated users via a crafted onerror attribute of a VIDEO element in an action for an ALERT.
Solarwinds Network Performance Monitor Orion Platform 2018 Netpath 1.1.3
Solarwinds Network Performance Monitor Orion Platform 2018 Npm 12.3
4.8
CVSSv3
CVE-2019-12863
SolarWinds Orion Platform 2018.4 HF3 (NPM 12.4, NetPath 1.1.4) allows Stored HTML Injection by administrators via the Web Console Settings screen.
Solarwinds Netpath 1.1.4
Solarwinds Orion Platform 2018.4
Solarwinds Network Performance Monitor 12.4
NA
CVE-2014-9566
Multiple SQL injection vulnerabilities in the Manage Accounts page in the AccountManagement.asmx service in the Solarwinds Orion Platform 2015.1, as used in Network Performance Monitor (NPM) prior to 11.5, NetFlow Traffic Analyzer (NTA) prior to 4.1, Network Configuration Manager...
Solarwinds Orion Netflow Traffic Analyzer
Solarwinds Orion Web Performance Monitor
Solarwinds Orion Network Configuration Manager
Solarwinds Orion User Device Tracker
Solarwinds Orion Ip Address Manager
Solarwinds Orion Voip & Network Quality Manager
Solarwinds Orion Server And Application Manager
Solarwinds Orion Network Performance Monitor
1 EDB exploit
NA
CVE-2012-4939
Cross-site scripting (XSS) vulnerability in IPAMSummaryView.aspx in the IPAM web interface prior to 3.0-HotFix1 in SolarWinds Orion Network Performance Monitor might allow remote malicious users to inject arbitrary web script or HTML via the "Search for an IP address" f...
Solarwinds Orion Network Performance Monitor 10.3
Solarwinds Orion Network Performance Monitor 10.2
Solarwinds Orion Network Performance Monitor 10.1.13.0
Solarwinds Orion Network Performance Monitor 10.2.2
Solarwinds Ip Address Manager Web Interface
Solarwinds Orion Network Performance Monitor -
Solarwinds Orion Network Performance Monitor 10.1
Solarwinds Orion Network Performance Monitor 10.2.1
Solarwinds Orion Network Performance Monitor 10.0
Solarwinds Orion Network Performance Monitor 10.3.1
1 EDB exploit
NA
CVE-2012-2577
Multiple cross-site scripting (XSS) vulnerabilities in SolarWinds Orion Network Performance Monitor (NPM) prior to 10.3.1 allow remote malicious users to inject arbitrary web script or HTML via the (1) syslocation, (2) syscontact, or (3) sysName field of an snmpd.conf file.
Solarwinds Orion Network Performance Monitor 8.5.1
Solarwinds Orion Network Performance Monitor 8.5
Solarwinds Orion Network Performance Monitor 9.0
Solarwinds Orion Network Performance Monitor 9.5.1
Solarwinds Orion Network Performance Monitor 10.1
Solarwinds Orion Network Performance Monitor 10.0
Solarwinds Orion Network Performance Monitor 7.8.5
Solarwinds Orion Network Performance Monitor 9.1
Solarwinds Orion Network Performance Monitor
1 EDB exploit
NA
CVE-2012-2602
Multiple cross-site request forgery (CSRF) vulnerabilities in SolarWinds Orion Network Performance Monitor (NPM) prior to 10.3.1 allow remote malicious users to hijack the authentication of administrators for requests that (1) create user accounts via CreateUserStepContainer acti...
Solarwinds Orion Network Performance Monitor 10.1.13.0
Solarwinds Orion Network Performance Monitor
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
CVE-2012-1823
memory leak
CVE-2024-0627
CVE-2024-31402
privilege escalation
CVE-2024-36418
remote code execution
CVE-2024-27844
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »