vulnerability

SolarWinds Platform: CVE-2023-23845: Exposed Dangerous Method Vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:A/AC:L/Au:M/C:C/I:C/A:C)	Jul 18, 2023	Aug 5, 2025	Aug 5, 2025

Severity

CVSS

(AV:A/AC:L/Au:M/C:C/I:C/A:C)

Published

Jul 18, 2023

Added

Aug 5, 2025

Modified

Aug 5, 2025

Description

The SolarWinds Platform was found to be susceptible to the Incorrect Comparison Vulnerability. This vulnerability allows users with administrative access to SolarWinds Web Console to execute arbitrary commands with NETWORK SERVICE privileges.

Solution

solarwinds-platform-upgrade-latest

References

CWE-697
CVE-2023-23845
https://attackerkb.com/topics/CVE-2023-23845
URL-https://www.solarwinds.com/trust-center/security-advisories/cve-2023-23845

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today