Shodan
Vulnerabilities
Vulnerable Software
Solarwinds:  >> Access Rights Manager  >> 2023.2  Security Vulnerabilities
CVE-2024-23478
SolarWinds Access Rights Manager (ARM) was found to be susceptible to a Remote Code Execution Vulnerability. If exploited, this vulnerability allows an authenticated user to abuse a SolarWinds service, resulting in remote code execution.
CVSS Score
8.0
EPSS Score
0.682
Published
2024-02-15
CVE-2023-40057
The SolarWinds Access Rights Manager was found to be susceptible to a Remote Code Execution Vulnerability. If exploited, this vulnerability allows an authenticated user to abuse a SolarWinds service resulting in remote code execution.
CVSS Score
9.0
EPSS Score
0.089
Published
2024-02-15
CVE-2023-40058
Sensitive data was added to our public-facing knowledgebase that, if exploited, could be used to access components of Access Rights Manager (ARM) if the threat actor is in the same environment.
CVSS Score
6.5
EPSS Score
0.003
Published
2023-12-21
CVE-2023-35182
The SolarWinds Access Rights Manager was susceptible to Remote Code Execution Vulnerability. This vulnerability can be abused by unauthenticated users on SolarWinds ARM Server.
CVSS Score
8.8
EPSS Score
0.046
Published
2023-10-19
CVE-2023-35183
The SolarWinds Access Rights Manager was susceptible to Privilege Escalation Vulnerability. This vulnerability allows authenticated users to abuse local resources to Privilege Escalation.
CVSS Score
7.8
EPSS Score
0.001
Published
2023-10-19
CVE-2023-35184
The SolarWinds Access Rights Manager was susceptible to Remote Code Execution Vulnerability. This vulnerability allows an unauthenticated user to abuse a SolarWinds service resulting in a remote code execution.
CVSS Score
8.8
EPSS Score
0.106
Published
2023-10-19
CVE-2023-35185
The SolarWinds Access Rights Manager was susceptible to a Directory Traversal Remote Code Vulnerability using SYSTEM privileges.
CVSS Score
6.8
EPSS Score
0.002
Published
2023-10-19
CVE-2023-35186
The SolarWinds Access Rights Manager was susceptible to Remote Code Execution Vulnerability. This vulnerability allows an authenticated user to abuse SolarWinds service resulting in remote code execution.
CVSS Score
8.0
EPSS Score
0.096
Published
2023-10-19
CVE-2023-35187
The SolarWinds Access Rights Manager was susceptible to a Directory Traversal Remote Code Vulnerability. This vulnerability allows an unauthenticated user to achieve the Remote Code Execution.
CVSS Score
8.8
EPSS Score
0.02
Published
2023-10-19
CVE-2023-35180
The SolarWinds Access Rights Manager was susceptible to Remote Code Execution Vulnerability. This vulnerability allows authenticated users to abuse SolarWinds ARM API.
CVSS Score
8.0
EPSS Score
0.491
Published
2023-10-19


Products
Pricing
Contact Us

Shodan ® - All rights reserved