vulnerability

SolarWinds Orion Platform: Stored XSS Via Maps Text Box Hyperlink Vulnerability (CVE-2021-35239)

Try Surface Command
Back to search
Severity
4
CVSS
(AV:N/AC:M/Au:S/C:N/I:P/A:N)
Published
Aug 31, 2021
Added
Nov 30, 2021
Modified
Nov 30, 2021

Description

A security researcher found a user with Orion map manage rights could store XSS through via text box hyperlink.

Solution

solarwinds-orion-platform-upgrade-2020_2_6

References

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today