CVE-2017-5198

Name of the Vulnerable Software and Affected Versions SolarWinds LEM (aka SIEM) versions prior to 6.3.1

Description The issue is related to an incorrect sudo configuration, allowing local users to gain root access. This can be achieved by editing the /usr/local/contego/scripts/hostname.sh script.

Recommendations For versions prior to 6.3.1, update to version 6.3.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the /usr/local/contego/scripts/hostname.sh script to prevent local users from editing it and obtaining root access.