CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-36961

A vulnerable component of Orion Platform was vulnerable to SQL Injection, an authenticated attacker could leverage this for privilege escalation or remote code execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.236

EPSS Ranking 95.6%

CVSS Severity

CVSS v3 Score 8.8

References

Products affected by CVE-2022-36961

Solarwinds » Orion Platform » Version: 2016.1

cpe:2.3:a:solarwinds:orion_platform:2016.1
Solarwinds » Orion Platform » Version: 2016.2

cpe:2.3:a:solarwinds:orion_platform:2016.2
Solarwinds » Orion Platform » Version: 2017.1

cpe:2.3:a:solarwinds:orion_platform:2017.1
Solarwinds » Orion Platform » Version: 2017.3

cpe:2.3:a:solarwinds:orion_platform:2017.3
Solarwinds » Orion Platform » Version: 2018.2

cpe:2.3:a:solarwinds:orion_platform:2018.2
Solarwinds » Orion Platform » Version: 2018.4

cpe:2.3:a:solarwinds:orion_platform:2018.4
Solarwinds » Orion Platform » Version: 2019.2

cpe:2.3:a:solarwinds:orion_platform:2019.2
Solarwinds » Orion Platform » Version: 2019.4

cpe:2.3:a:solarwinds:orion_platform:2019.4
Solarwinds » Orion Platform » Version: 2019.4.2

cpe:2.3:a:solarwinds:orion_platform:2019.4.2
Solarwinds » Orion Platform » Version: 2020.2

cpe:2.3:a:solarwinds:orion_platform:2020.2
Solarwinds » Orion Platform » Version: 2020.2.1

cpe:2.3:a:solarwinds:orion_platform:2020.2.1
Solarwinds » Orion Platform » Version: 2020.2.4

cpe:2.3:a:solarwinds:orion_platform:2020.2.4
Solarwinds » Orion Platform » Version: 2020.2.5

cpe:2.3:a:solarwinds:orion_platform:2020.2.5
Solarwinds » Orion Platform » Version: 2020.2.6

cpe:2.3:a:solarwinds:orion_platform:2020.2.6
Solarwinds » Orion Platform » Version: 2022.2

cpe:2.3:a:solarwinds:orion_platform:2022.2
Solarwinds » Orion Platform » Version: 2022.2.0

cpe:2.3:a:solarwinds:orion_platform:2022.2.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-36961

Products

Pricing

Contact Us