CVE-2022-47506

Name of the Vulnerable Software and Affected Versions SolarWinds Platform (affected versions not specified)

Description The issue is related to a Directory Traversal Vulnerability in the SolarWinds Platform, which allows a local adversary with authenticated account access to edit the default configuration. This enables the execution of arbitrary commands. The vulnerability is also associated with incorrect restriction of the path name to a directory with limited access, potentially allowing a remote attacker to execute arbitrary commands.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.