Skip to main content

Security Event Manager

4 CVEs product

Monthly

CVE-2024-0692 HIGH POC THREAT This Week

The SolarWinds Security Event Manager was susceptible to Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Deserialization RCE Security Event Manager
NVD
CVSS 3.1
8.8
EPSS
91.6%
CVE-2022-38115 MEDIUM This Month

Insecure method vulnerability in which allowed HTTP methods are disclosed. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Security Event Manager
NVD
CVSS 3.1
5.3
EPSS
0.7%
CVE-2022-38114 MEDIUM This Month

This vulnerability occurs when a web server fails to correctly process the Content-Length of POST requests. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Security Event Manager
NVD
CVSS 3.1
6.1
EPSS
0.5%
CVE-2022-38113 MEDIUM This Month

This vulnerability discloses build and services versions in the server response header. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Security Event Manager
NVD
CVSS 3.1
5.3
EPSS
0.7%
EPSS 92% CVSS 8.8
HIGH POC THREAT This Week

The SolarWinds Security Event Manager was susceptible to Remote Code Execution Vulnerability. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Deserialization RCE Security Event Manager
NVD
EPSS 1% CVSS 5.3
MEDIUM This Month

Insecure method vulnerability in which allowed HTTP methods are disclosed. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Security Event Manager
NVD
EPSS 1% CVSS 6.1
MEDIUM This Month

This vulnerability occurs when a web server fails to correctly process the Content-Length of POST requests. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Security Event Manager
NVD
EPSS 1% CVSS 5.3
MEDIUM This Month

This vulnerability discloses build and services versions in the server response header. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Security Event Manager
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy