An SQL injection Privilege Escalation Vulnerability was discovered in the Orion Platform reported by the ZDI Team. A blind Boolean SQL injection which could lead to full read/write over the Orion database content including the Orion certificate for any authenticated user.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: SolarWinds

Published: 2021-08-31T17:00:15

Updated: 2024-08-04T00:33:51.205Z

Reserved: 2021-06-22T00:00:00

Link: CVE-2021-35212

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2021-08-31T17:15:07.910

Modified: 2021-11-05T17:45:00.953

Link: CVE-2021-35212

cve-icon Redhat

No data.