Local Privilege Escalation in SolarWinds LEM (aka SIEM) before 6.3.1

Local Privilege Escalation in SolarWinds LEM (aka SIEM) before 6.3.1

CVE-2017-5198 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

SolarWinds LEM (aka SIEM) before 6.3.1 has an incorrect sudo configuration, which allows local users to obtain root access by editing /usr/local/contego/scripts/hostname.sh.

Learn more about our User Device Pen Test.