Solarwinds: >> Server And Application Monitor Security Vulnerabilities
Customers who had configured their polling to occur via Kerberos did not expect NTLM Traffic on their environment, but since we were querying for data via IP address this prevented us from utilizing Kerberos.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-02-15
The factory.loadExtensionFactory function in TSUnicodeGraphEditorControl in SolarWinds Server and Application Monitor (SAM) allow remote attackers to execute arbitrary code via a UNC path to a crafted binary.
CVSS Score
6.8
EPSS Score
0.209
Published
2015-02-16
Multiple stack-based buffer overflows in the TSUnicodeGraphEditorControl in SolarWinds Server and Application Monitor (SAM) allow remote attackers to execute arbitrary code via unspecified vectors to (1) graphManager.load or (2) factory.load.
CVSS Score
6.8
EPSS Score
0.426
Published
2015-02-16