CVE-2021-35227

Summary

The HTTP interface was enabled for RabbitMQ Plugin in ARM 2020.2.6 and the ability to configure HTTPS was not available.

Affected Software

VendorProductVersion RangeStatus
SolarWindsAccess Rights Manager2020.2.6 and previous versions <= 2021.4affected

Weaknesses

  • CWE-79: CWE-79

Workarounds

Customers are advised to update to ARM 2021.4 once it becomes available

ADP Enrichment

CVE Program Container

Additional References

References