An SQL injection Privilege Escalation Vulnerability was discovered in the Orion Platform reported by the ZDI Team. A blind Boolean SQL injection which could lead to full read/write over the Orion database content including the Orion certificate for any authenticated user.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: SolarWinds
Published: 2021-08-31T17:00:15
Updated: 2024-08-04T00:33:51.205Z
Reserved: 2021-06-22T00:00:00
Link: CVE-2021-35212
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2021-08-31T17:15:07.910
Modified: 2021-11-05T17:45:00.953
Link: CVE-2021-35212
Redhat
No data.