Users with Node Management rights were able to view and edit all nodes due to Insufficient control on URL parameter causing insecure direct object reference (IDOR) vulnerability in SolarWinds Platform 2022.3 and previous.
Metrics
Affected Vendors & Products
References
History
Mon, 16 Sep 2024 19:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Users with Node Management rights were able to view and edit all nodes due to Insufficient control on URL parameter causing insecure direct object reference (IDOR) vulnerability in SolarWinds Platform 2022.3 and previous. | Users with Node Management rights were able to view and edit all nodes due to Insufficient control on URL parameter causing insecure direct object reference (IDOR) vulnerability in SolarWinds Platform 2022.3 and previous. |
MITRE
Status: PUBLISHED
Assigner: SolarWinds
Published: 2022-10-20T20:05:35.645255Z
Updated: 2024-09-16T18:48:39.156Z
Reserved: 2022-07-27T00:00:00
Link: CVE-2022-36966
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-10-20T21:15:10.050
Modified: 2024-09-16T19:16:04.357
Link: CVE-2022-36966
Redhat
No data.