Solarwinds » Storage Manager : Security Vulnerabilities, CVEs,

CVE-2015-7838

ProcessFileUpload.jsp in SolarWinds Storage Manager before 6.2 allows remote attackers to upload and execute arbitrary files via unspecified vectors.
Max CVSS
10.0
EPSS Score
1.16%
Published
2015-10-15
Updated
2015-10-16

CVE-2015-5371

Public exploit
The AuthenticationFilter class in SolarWinds Storage Manager allows remote attackers to upload and execute arbitrary scripts via unspecified vectors.
Max CVSS
10.0
EPSS Score
97.35%
Published
2015-07-06
Updated
2016-11-28

CVE-2012-2576

SQL injection vulnerability in the LoginServlet page in SolarWinds Storage Manager before 5.1.2, SolarWinds Storage Profiler before 5.1.2, and SolarWinds Backup Profiler before 5.1.2 allows remote attackers to execute arbitrary SQL commands via the loginName field.
Max CVSS
10.0
EPSS Score
20.62%
Published
2017-12-20
Updated
2018-01-11
3 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close