Vulnerabilities

CVE-2021-35212

by Fred · 31/08/2021

An SQL injection Privilege Escalation Vulnerability was discovered in the Orion Platform reported by the ZDI Team. A blind Boolean SQL injection which could lead to full read/write over the Orion database content including the Orion certificate for any authenticated user.

Date published : 2021-08-31

https://www.zerodayinitiative.com/advisories/ZDI-21-1243/

https://documentation.solarwinds.com/en/success_center/orionplatform/content/core-secure-configuration.htm

Related

Tags: Cybersecurity Alert