SolarWinds Platform Directory Traversal Vulnerability: Arbitrary Command Execution

SolarWinds Platform Directory Traversal Vulnerability: Arbitrary Command Execution

CVE-2022-47506 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

SolarWinds Platform was susceptible to the Directory Traversal Vulnerability. This vulnerability allows a local adversary with authenticated account access to edit the default configuration, enabling the execution of arbitrary commands.

Learn more about our Web Application Penetration Testing UK.