CVE-2021-35244

EUVD-2021-21887
The "Log alert to a file" action within action management enables any Orion Platform user with Orion alert management rights to write to any file. An attacker with Orion alert management rights could use this vulnerability to perform an unrestricted file upload causing a remote code execution.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.8 MEDIUM
ADJACENT_NETWORK
HIGH
HIGH
CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:L/A:L
SolarWindsCNA
6.8 MEDIUM
ADJACENT_NETWORK
HIGH
HIGH
CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:L/A:L
Base Score
CVSS 3.x
EPSS Score
Percentile: 95%
Affected Products (NVD)
VendorProductVersion
solarwindsorion_platform
𝑥
< 2020.2.6
solarwindsorion_platform
2020.2.6
solarwindsorion_platform
2020.2.6:hotfix1
solarwindsorion_platform
2020.2.6:hotfix2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://documentation.solarwinds.com/en/Success_Center/orionplatform/content/core-secure-configuration.htm
https://support.solarwinds.com/SuccessCenter/s/article/Orion-Platform-2020-2-6-Hotfix-3?language=en_US
https://www.solarwinds.com/trust-center/security-advisories/cve-2021-35242
https://www.zerodayinitiative.com/advisories/ZDI-22-375/
https://documentation.solarwinds.com/en/Success_Center/orionplatform/content/core-secure-configuration.htm
https://support.solarwinds.com/SuccessCenter/s/article/Orion-Platform-2020-2-6-Hotfix-3?language=en_US
https://www.solarwinds.com/trust-center/security-advisories/cve-2021-35242
https://www.zerodayinitiative.com/advisories/ZDI-22-375/