All 7 CVE vulnerabilities found in SolarWinds Observability Self-Hosted, with AI-generated Chinese analysis, references, and POCs.
Vendor: SolarWinds
| CVE ID | Title | CVSS | Severity | Paused |
|---|---|---|---|---|
| CVE-2026-28298 | SolarWinds Observability Self-Hosted Stored Cross-Site Scripting Vulnerability CWE-79 | 5.9 | Medium | 2026-03-26 |
| CVE-2026-28297 | SolarWinds Observability Self-Hosted Stored Cross-Site Scripting Vulnerability CWE-79 | 6.1 | Medium | 2026-03-26 |
| CVE-2025-40545 | SolarWinds Observability Self-Hosted Open Redirection Vulnerability CWE-601 | 4.8 | Medium | 2025-11-18 |
| CVE-2025-26391 | SolarWinds Observability Self-Hosted XSS Vulnerability CWE-79 | 5.4 | Medium | 2025-11-18 |
| CVE-2025-26397 | SolarWinds Observability Self-Hosted Deserialization of Untrusted Data Local Privilege Escalation Vulnerability CWE-502 | 7.8 | High | 2025-07-24 |
| CVE-2025-26395 | SolarWinds SWOSH DOM-based reflective XSS Vulnerability CWE-79 | 7.1 | High | 2025-06-10 |
| CVE-2025-26394 | SolarWinds SWOSH Open Redirection Vulnerability CWE-601 | 4.8 | Medium | 2025-06-10 |
All 7 known CVE vulnerabilities affecting SolarWinds Observability Self-Hosted with full Chinese analysis, references, and POCs where available.