CVE-2023-23842 – SolarWinds Network Configuration Manager Directory Traversal Vulnerability

https://notcve.org/view.php?id=CVE-2023-23842

The SolarWinds Network Configuration Manager was susceptible to the Directory Traversal Vulnerability. This vulnerability allows users with administrative access to SolarWinds Web Console to execute arbitrary commands. SolarWinds Network Configuration Manager era susceptible a la vulnerabilidad de Directory Traversal. Esta vulnerabilidad permite a los usuarios con acceso administrativo a SolarWinds Web Console ejecutar comandos arbitrarios. This vulnerability allows remote attackers to execute arbitrary code on affected installations of SolarWinds Network Configuration Manager. • https://documentation.solarwinds.com/en/success_center/ncm/content/release_notes/ncm_2023-3_release_notes.htm https://www.solarwinds.com/trust-center/security-advisories/CVE-2023-23842 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •