Solarwinds Network Configuration Manager — known CVE vulnerabilities
Every CVE whose affected-product data names Solarwinds Network Configuration Manager, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2023-33227 — CVSS 8.0 (high): The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability This vulnerability allows a…
CVE-2023-33226 — CVSS 8.0 (high): The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows a…
CVE-2023-40054 — CVSS 8.0 (high): The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows a…
CVE-2023-40055 — CVSS 8.0 (high): The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows a…
CVE-2014-3459 — CVSS 6.8 (medium): Heap-based buffer overflow in SolarWinds Network Configuration Manager (NCM) before 7.3 allows remote attackers to execute arbitrary code…
CVE-2021-35226 — CVSS 6.5 (medium): An entity in Network Configuration Manager product is misconfigured and exposing password field to Solarwinds Information Service (SWIS)…
CVE-2023-33228 — CVSS 4.5 (medium): The SolarWinds Network Configuration Manager was susceptible to the Exposure of Sensitive Information Vulnerability. This vulnerability…