CVE-2021-35215

Summary

Insecure deserialization leading to Remote Code Execution was detected in the Orion Platform version 2020.2.5. Authentication is required to exploit this vulnerability.

Affected Software

VendorProductVersion RangeStatus
SolarWindsOrion Platform2020.2.5 and previous versions < 2020.2.6affected

Weaknesses

  • CWE-502: CWE-502 Deserialization of Untrusted Data

ADP Enrichment

CVE Program Container

Additional References

References