Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SolarWinds Access Rights Manager (ARM) Internal Deserialization Remote Code Execution Vulnerability
Vulnerability Description
It was discovered that a previous vulnerability was not completely fixed with SolarWinds Access Rights Manager. While some controls were implemented the researcher was able to bypass these and use a different method to exploit the vulnerability.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Vulnerability Type
可信数据的反序列化
Vulnerability Title
SolarWinds Access Rights Manager 代码问题漏洞
Vulnerability Description
SolarWinds Access Rights Manager是SolarWinds公司的一个轻量级的审查管理系统。 SolarWinds Access Rights Manager 2024.3之前版本存在代码问题漏洞,该漏洞源于内部反序列化和远程代码执行漏洞。
CVSS Information
N/A
Vulnerability Type
N/A