CVE-2023-23843

Name of the Vulnerable Software and Affected Versions SolarWinds Orion Platform (affected versions not specified)

Description The issue is related to an incorrect comparison vulnerability in the UpdateActionsProperties method of the SolarWinds Orion Platform. This vulnerability allows a remote attacker to execute arbitrary code in the context of NETWORK SERVICE. It also enables users with administrative access to the SolarWinds Web Console to execute arbitrary commands.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.