CVE-2021-35219

Summary

ExportToPdfCmd Arbitrary File Read Information Disclosure Vulnerability using ImportAlert function within the Alerts Settings page.

Affected Software

VendorProductVersion RangeStatus
SolarWindsOrion Platform2020.2.6 and previous versions <= 2020.2.6 HF1affected

Weaknesses

  • Remote Command Injection

Workarounds

If you are unable to upgrade immediately. See SolarWinds Knowledgebase Article Below: https://support.solarwinds.com/SuccessCenter/s/article/Mitigate-the-ExportToPdfCmd-Arbitrary-File-Read-Information-Disclosure-CVE-2021-35219?language=en_US

ADP Enrichment

CVE Program Container

Additional References

References