CVE-2021-35244
MEDIUM severity · CVSS 6.8 · Unrestricted file upload
6.8CVSS MEDIUM
Summary
The "Log alert to a file" action within action management enables any Orion Platform user with Orion alert management rights to write to any file. An attacker with Orion alert management rights could use this vulnerability to perform an unrestricted file upload causing a remote code execution.
Impact & exploitability
Attack vectorAdjacent
Attack complexityHigh
Privileges requiredHigh
User interactionNone
Confidentiality impactHigh
Integrity impactLow
Availability impactLow
Exploit probability (EPSS)35%
CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:L/A:L
Affected products we track (1)
Recommendation
Apply the vendor fix in your normal patch cycle. Open any affected product above for its exact safe version.
Additional information
- NVD record
- https://documentation.solarwinds.com/en/Success_Center/orionplatform/content/core-secure-configuration.htmAdvisory
- https://support.solarwinds.com/SuccessCenter/s/article/Orion-Platform-2020-2-6-Hotfix-3?language=en_USAdvisory
- https://www.solarwinds.com/trust-center/security-advisories/cve-2021-35242Advisory
- https://documentation.solarwinds.com/en/Success_Center/orionplatform/content/core-secure-configuration.htmAdvisory
- https://support.solarwinds.com/SuccessCenter/s/article/Orion-Platform-2020-2-6-Hotfix-3?language=en_USAdvisory
- https://www.solarwinds.com/trust-center/security-advisories/cve-2021-35242Advisory
- https://www.zerodayinitiative.com/advisories/ZDI-22-375/Advisory
- https://www.zerodayinitiative.com/advisories/ZDI-22-375/Advisory