CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-36961

A vulnerable component of Orion Platform was vulnerable to SQL Injection, an authenticated attacker could leverage this for privilege escalation or remote code execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.752

EPSS Ranking 99.4%

CVSS Severity

CVSS v3 Score 8.8

References

Products affected by CVE-2022-36961

Solarwinds » Orion Platform » Version: 2016.1

cpe:2.3:a:solarwinds:orion_platform:2016.1
Solarwinds » Orion Platform » Version: 2016.2

cpe:2.3:a:solarwinds:orion_platform:2016.2
Solarwinds » Orion Platform » Version: 2017.1

cpe:2.3:a:solarwinds:orion_platform:2017.1
Solarwinds » Orion Platform » Version: 2017.3

cpe:2.3:a:solarwinds:orion_platform:2017.3
Solarwinds » Orion Platform » Version: 2018.2

cpe:2.3:a:solarwinds:orion_platform:2018.2
Solarwinds » Orion Platform » Version: 2018.4

cpe:2.3:a:solarwinds:orion_platform:2018.4
Solarwinds » Orion Platform » Version: 2019.2

cpe:2.3:a:solarwinds:orion_platform:2019.2
Solarwinds » Orion Platform » Version: 2019.4

cpe:2.3:a:solarwinds:orion_platform:2019.4
Solarwinds » Orion Platform » Version: 2019.4.2

cpe:2.3:a:solarwinds:orion_platform:2019.4.2
Solarwinds » Orion Platform » Version: 2020.2

cpe:2.3:a:solarwinds:orion_platform:2020.2
Solarwinds » Orion Platform » Version: 2020.2.1

cpe:2.3:a:solarwinds:orion_platform:2020.2.1
Solarwinds » Orion Platform » Version: 2020.2.4

cpe:2.3:a:solarwinds:orion_platform:2020.2.4
Solarwinds » Orion Platform » Version: 2020.2.5

cpe:2.3:a:solarwinds:orion_platform:2020.2.5
Solarwinds » Orion Platform » Version: 2020.2.6

cpe:2.3:a:solarwinds:orion_platform:2020.2.6
Solarwinds » Orion Platform » Version: 2022.2

cpe:2.3:a:solarwinds:orion_platform:2022.2
Solarwinds » Orion Platform » Version: 2022.2.0

cpe:2.3:a:solarwinds:orion_platform:2022.2.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-36961

Products

Pricing

Contact Us