CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-33224

The SolarWinds Platform was susceptible to the Incorrect Behavior Order Vulnerability. This vulnerability allows users with administrative access to SolarWinds Web Console to execute arbitrary commands with NETWORK SERVICE privileges.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 47.4%

CVSS Severity

CVSS v3 Score 7.2

References

Products affected by CVE-2023-33224

Solarwinds » Solarwinds Platform » Version: N/A

cpe:2.3:a:solarwinds:solarwinds_platform:-
Solarwinds » Solarwinds Platform » Version: 2022.2.0

cpe:2.3:a:solarwinds:solarwinds_platform:2022.2.0
Solarwinds » Solarwinds Platform » Version: 2022.3.0

cpe:2.3:a:solarwinds:solarwinds_platform:2022.3.0
Solarwinds » Solarwinds Platform » Version: 2022.4.0

cpe:2.3:a:solarwinds:solarwinds_platform:2022.4.0
Solarwinds » Solarwinds Platform » Version: 2023.1.0

cpe:2.3:a:solarwinds:solarwinds_platform:2023.1.0
Solarwinds » Solarwinds Platform » Version: 2023.2.0

cpe:2.3:a:solarwinds:solarwinds_platform:2023.2.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-33224

Products

Pricing

Contact Us