CVE-2024-28074
EUVD-2024-2524117.07.2024, 15:15
It was discovered that a previous vulnerability was not completely fixed with SolarWinds Access Rights Manager. While some controls were implemented the researcher was able to bypass these and use a different method to exploit the vulnerability.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| solarwinds | access_rights_manager | 𝑥 ≤ 2023.2.4 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration