CVE-2020-10148

Description from NVD

The SolarWinds Orion API is vulnerable to an authentication bypass that could allow a remote attacker to execute API commands. This vulnerability could allow a remote attacker to bypass authentication and execute API commands which may result in a compromise of the SolarWinds instance. SolarWinds Orion Platform versions 2019.4 HF 5, 2020.2 with no hotfix installed, and 2020.2 HF 1 are affected.

Information Acquisition Date:2021-04-27T11:02Z

CVSS 2.0: 7.5 HIGH CVSS 3.x: 9.8 CRITICAL

▼ CVSS3 Vec CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector (AV)	Network	Adjacent	Local	Physical
Attack Complexity (AC)	LOW	High
Privileges Required (PR)	None	Low	High
User Interaction (UI)	None	Required
Scope (S)	Unchange	Change
Confidentiality (C)	None	Low	High
Integrity (I)	None	Low	High
Availability (A)	None	Low	High

▼ CVSS2 Vec AV:N/AC:L/Au:N/C:P/I:P/A:P

Attack Vector (AV)	Network	Adjacent	Local
Access Complexity (AC)	Low	Medium	High
Authentication (Au)	None	Single	Multiple
Confidentiality (C)	None	Parical	Complete
Integrity (I)	None	Partial	Complete
Availability (A)	None	Partial	Complete

NVD References

VU#843464
source:CERT-VN
tags:Third Party Advisory US Government Resource

https://www.solarwinds.com/securityadvisory
source:CONFIRM
tags:Vendor Advisory

This vulnerability may involve a PoC.

Refer to Information on External Sites

CVE Infomation	Exploits or more Infomation
mitre	EXPLOIT DATABASE
NVD	0day.today
vulmon.com	github
CVE Details	Twitter
JVN ENG JPN
Reconshell

Software Tag:

List of frequently cited URLs

URL	Num of Times Referred to
https://lists.astaro.com/ASGV9-IPS-rules.html	15
https://www.reddit.com/r/netsec	13
https://kb.cert.org/vuls/id/843464	7
https://vfeed.io	6
http://tweetedtimes.com/susession?s=tnp	4
https://bit.ly/2VS1QtH	3
https://ift.tt/3nXD0S0	3
https://twitter.com/_r_netsec/status/1342933983428923392	3
https://attackerkb.com/topics/oOQnGlyZAN/cve-2020-10148-sol...	3
https://gist.github.com/0xsha/75616ef6f24067c4fb5b320c5dfa4965	3
https://thehackernews.com/2020/12/a-new-solarwinds-flaw-lik...	3

Information from Twitter

User	URL	Info Source	Date
adulau	https://cvepremium.circl.lu/cve/CVE-2020-10148	Source adulau 1641819470388658177	2023/04/01

List of frequently cited URLs

URL	Num of Times Referred to
lists.astaro.com	15
www.reddit.com	13
kb.cert.org	7
vfeed.io	6
tweetedtimes.com	4
bit.ly	3
ift.tt	3
twitter.com	3
attackerkb.com	3
gist.github.com	3
thehackernews.com	3

Information from Twitter

User	URL	Info Source
adulau	cvepremium.circl.lu	Show Tweet

GitHub Search Results: Up to 10

Name	URL
B1anda0/CVE-2020-10148	https://github.com/B1anda0/CVE-2020-10148
rdoix/CVE-2020-10148-Solarwinds-Orion	https://github.com/rdoix/CVE-2020-10148-Solarwinds-Orion
Udyz/CVE-2020-10148-Solarwinds-Orion	https://github.com/Udyz/CVE-2020-10148-Solarwinds-Orion

GitHub Search Results: Up to 10

Name	URL
B1anda0/CVE-2020-10148	github.com
rdoix/CVE-2020-10148-Solarwinds-Orion	github.com
Udyz/CVE-2020-10148-Solarwinds-Orion	github.com

2023/04/01 Score : 1
Added Har-sia Database : 2020/12/27
Last Modified : 2023/04/01
Highest Scored Date : 2020/12/29
Highest Score : 42