Solarwinds · Solarwinds Log & Event Manager · CVE-2017-7646
**Name of the Vulnerable Software and Affected Versions**
SolarWinds Log & Event Manager (LEM) versions prior to 6.3.1 Hotfix 4
**Description**
The issue allows an authenticated user to browse the server's filesystem and read the contents of arbitrary files contained within.
**Recommendations**
For versions prior to 6.3.1 Hotfix 4, update to 6.3.1 Hotfix 4 or later to resolve the issue.