Solarwinds : Security Vulnerabilities, CVEs, Published In 2020 (Bypass)
CVE-2020-10148
Known exploited
The SolarWinds Orion API is vulnerable to an authentication bypass that could allow a remote attacker to execute API commands. This vulnerability could allow a remote attacker to bypass authentication and execute API commands which may result in a compromise of the SolarWinds instance. SolarWinds Orion Platform versions 2019.4 HF 5, 2020.2 with no hotfix installed, and 2020.2 HF 1 are affected.
Max CVSS
9.8
EPSS Score
97.31%
Published
2020-12-29
Updated
2022-10-21
CISA KEV Added
2021-11-03
1 vulnerabilities found