vulnerability

SolarWinds Orion Platform SUNBURST Backdoor

Try Surface Command

Back to search

Severity

CVSS

(AV:N/AC:L/Au:N/C:C/I:C/A:C)

Published

Dec 13, 2020

Added

Dec 16, 2020

Modified

Dec 16, 2020

Description

The detected version of SolarWinds Orion Platform is known to be affected
by the SUNBURST backdoor.

2019.4 HF 5, 2020.2 with no hotfix installed, and 2020.2 HF 1 are known
affected versions.

Solutions

http-solarwinds-orion-platform-upgrade-2019-4-hf6http-solarwinds-orion-platform-upgrade-2020-2-1-hf2

References

https://www.solarwinds.com/securityadvisory
https://www.fireeye.com/blog/threat-research/2020/12/evasive-attacker-leverages-solarwinds-supply-chain-compromises-with-sunburst-backdoor.html

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report