SolarWinds Network Configuration Manager
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in SolarWinds Network Configuration Manager.
By the Year
In 2026 there have been 0 vulnerabilities in SolarWinds Network Configuration Manager. Network Configuration Manager did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 0 | 0.00 |
| 2023 | 6 | 7.88 |
| 2022 | 1 | 6.50 |
It may take a day or so for new Network Configuration Manager vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent SolarWinds Network Configuration Manager Security Vulnerabilities
NCM RCE via Directory Traversal
CVE-2023-40055
8.8 - High
- November 09, 2023
The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows a low-level user to perform the actions with SYSTEM privileges. We found this issue was not resolved in CVE-2023-33227
Network Config Manager Directory Traversal RCE Grants SYSTEM Privileges
CVE-2023-40054
8.8 - High
- November 09, 2023
The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows a low-level user to perform the actions with SYSTEM privileges. We found this issue was not resolved in CVE-2023-33226
SolarWinds NCM Web Console Sensitive Info Exposure
CVE-2023-33228
4.9 - Medium
- November 01, 2023
The SolarWinds Network Configuration Manager was susceptible to the Exposure of Sensitive Information Vulnerability. This vulnerability allows users with administrative access to SolarWinds Web Console to obtain sensitive information.
Missing Encryption of Sensitive Data
Network Config Manager: Directory Traversal RCE (CVE-2023-33227)
CVE-2023-33227
8.8 - High
- November 01, 2023
The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability This vulnerability allows a low level user to perform the actions with SYSTEM privileges.
Directory traversal
Network Configuration Manager DIRTRAV RCE Escalates to SYSTEM
CVE-2023-33226
8.8 - High
- November 01, 2023
The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows a low-level user to perform the actions with SYSTEM privileges.
Directory traversal
SolarWinds NCM Directory Traversal Enables Remote Command Execution
CVE-2023-23842
7.2 - High
- July 26, 2023
The SolarWinds Network Configuration Manager was susceptible to the Directory Traversal Vulnerability. This vulnerability allows users with administrative access to SolarWinds Web Console to execute arbitrary commands.
Directory traversal
SolarWinds NCM Misconfig Exposes Password Field to SWIS
CVE-2021-35226
6.5 - Medium
- October 10, 2022
An entity in Network Configuration Manager product is misconfigured and exposing password field to Solarwinds Information Service (SWIS). Exposed credentials are encrypted and require authenticated access with an NCM role.
Inadequate Encryption Strength
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for SolarWinds Network Configuration Manager or by SolarWinds? Click the Watch button to subscribe.
