SolarWinds Network Configuration Manager
By the Year
In 2024 there have been 0 vulnerabilities in SolarWinds Network Configuration Manager . Last year Network Configuration Manager had 5 security vulnerabilities published. Right now, Network Configuration Manager is on track to have less security vulnerabilities in 2024 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 0 | 0.00 |
| 2023 | 5 | 8.02 |
| 2022 | 1 | 6.50 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Network Configuration Manager vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent SolarWinds Network Configuration Manager Security Vulnerabilities
The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability
CVE-2023-40055
8.8 - High
- November 09, 2023
The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows a low-level user to perform the actions with SYSTEM privileges. We found this issue was not resolved in CVE-2023-33227
The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability
CVE-2023-40054
8.8 - High
- November 09, 2023
The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows a low-level user to perform the actions with SYSTEM privileges. We found this issue was not resolved in CVE-2023-33226
The SolarWinds Network Configuration Manager was susceptible to the Exposure of Sensitive Information Vulnerability
CVE-2023-33228
4.9 - Medium
- November 01, 2023
The SolarWinds Network Configuration Manager was susceptible to the Exposure of Sensitive Information Vulnerability. This vulnerability allows users with administrative access to SolarWinds Web Console to obtain sensitive information.
Missing Encryption of Sensitive Data
The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability This vulnerability
CVE-2023-33227
8.8 - High
- November 01, 2023
The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability This vulnerability allows a low level user to perform the actions with SYSTEM privileges.
Directory traversal
The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability
CVE-2023-33226
8.8 - High
- November 01, 2023
The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows a low-level user to perform the actions with SYSTEM privileges.
Directory traversal
An entity in Network Configuration Manager product is misconfigured and exposing password field to Solarwinds Information Service (SWIS)
CVE-2021-35226
6.5 - Medium
- October 10, 2022
An entity in Network Configuration Manager product is misconfigured and exposing password field to Solarwinds Information Service (SWIS). Exposed credentials are encrypted and require authenticated access with an NCM role.
Inadequate Encryption Strength
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for SolarWinds Network Configuration Manager or by SolarWinds? Click the Watch button to subscribe.
