Product
solarwinds network performance monitor
8 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2021-35225
CVE-2021-31474
CVE-2020-27869
CVE-2019-12864
CVE-2019-12863
CVE-2018-13442
CVE-2017-9538
CVE-2017-9537
<= 2020.2.6
Each authenticated Orion Platform user in a MSP (Managed Service Provider) environment can view and browse all NetPath Services fr
>= 2020.2.1 and < 2020.2.5
This vulnerability allows remote attackers to execute arbitrary code on affected installations of SolarWinds Network Performance M
all versions
This vulnerability allows remote attackers to escalate privileges on affected installations of SolarWinds Network Performance Moni
all versions
SolarWinds Orion Platform 2018.4 HF3 (NPM 12.4, NetPath 1.1.4) is vulnerable to Information Leakage, because of improper error han
all versions
SolarWinds Orion Platform 2018.4 HF3 (NPM 12.4, NetPath 1.1.4) allows Stored HTML Injection by administrators via the Web Console
<= 12.3
SolarWinds Network Performance Monitor 12.3 allows SQL Injection via the /api/ActiveAlertsOnThisEntity/GetActiveAlerts TriggeringO
<= 12.0.15300.90
The 'Upload logo from external path' function of SolarWinds Network Performance Monitor version 12.0.15300.90 allows remote attack
all versions
Persistent cross-site scripting (XSS) in the Add Node function of SolarWinds Network Performance Monitor version 12.0.15300.90 all