CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Solarwinds: >> Observability Self-Hosted >> 2025.2.1 Security Vulnerabilities

CVE-2025-40545

SolarWinds Observability Self-Hosted is susceptible to an open redirection vulnerability. The URL is not properly sanitized, and an attacker could manipulate the string to redirect a user to a malicious site. The attack complexity is high, and authentication is required.

CVSS Score

4.8

EPSS Score

0.0

Published

2025-11-18

CVE-2025-26391

SolarWinds Observability Self-Hosted XSS Vulnerability. The SolarWinds Platform was susceptible to a XSS vulnerability that affects user-created URL fields. This vulnerability requires authentication from a low-level account.

CVSS Score

5.4

EPSS Score

0.001

Published

2025-11-18

CVE-2025-26392

SolarWinds Observability Self-Hosted is susceptible to SQL injection vulnerability that may display sensitive data using a low-level account. This vulnerability requires authentication from a low-privilege account.

CVSS Score

5.4

EPSS Score

0.001

Published

2025-10-21

Page 1

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved