Critical Security Update for SolarWinds Access Rights Manager (ARM)

The vulnerabilities known as CVE-2023-35182, CVE-2023-35185, and CVE-2023-35187 could result in remote code execution if successfully exploited

Threat ID:: CC-4396
Threat Severity:: Medium
Published:: 23 October 2023 2:55 PM

Report a cyber attack: call 0300 303 5222 or email [email protected]

Summary

The vulnerabilities known as CVE-2023-35182, CVE-2023-35185, and CVE-2023-35187 could result in remote code execution if successfully exploited

Affected platforms

The following platforms are known to be affected:

Versions: all prior to 2023.2.1

SolarWinds Access Rights Manager

Threat details

Introduction

SolarWinds have released security updates regarding three critical vulnerabilities affecting SolarWinds Access Rights Manager (ARM).

The critical vulnerabilities tracked as CVE-2023-35182, CVE-2023-35185, and CVE-2023-35187 could allow an attacker to perform remote code execution (RCE) on an affected system.

Remediation advice

Affected organisations are encouraged to view SolarWinds' ARM 2023.2.1 Release Notes and apply the necessary updates.

Definitive source of threat updates

https://documentation.solarwinds.com/en/success_center/arm/content/release_notes/arm_2023-2-1_release_notes.htm

CVE Vulnerabilities

Status Published

CVE-2023-35182

The SolarWinds Access Rights Manager was susceptible to Remote Code Execution Vulnerability. This vulnerability can be abused by unauthenticated users on SolarWinds ARM Server.

Status Published

CVE-2023-35185

The SolarWinds Access Rights Manager was susceptible to a Directory Traversal Remote Code Vulnerability using SYSTEM privileges.

Status Published

CVE-2023-35187

The SolarWinds Access Rights Manager was susceptible to a Directory Traversal Remote Code Vulnerability. This vulnerability allows an unauthenticated user to achieve the Remote Code Execution.

Last edited: 23 October 2023 2:55 pm