Unrated severityNVD Advisory· Published Sep 1, 2021· Updated Aug 4, 2024
Chart Endpoint Deserialization of Untrusted Data Remote Code Execution Vulnerability
CVE-2021-35218
Description
Deserialization of Untrusted Data in the Web Console Chart Endpoint can lead to remote code execution. An unauthorized attacker who has network access to the Orion Patch Manager Web Console could potentially exploit this and compromise the server
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<2020.2.6+ 1 more
- (no CPE)range: <2020.2.6
- (no CPE)range: 2020.5 and previous versions
Patches
Vulnerability mechanics
References
3- documentation.solarwinds.com/en/success_center/patchman/content/release_notes/patchman_2020-2-6_release_notes.htmmitrex_refsource_MISC
- www.solarwinds.com/trust-center/security-advisories/cve-2021-35218mitrex_refsource_MISC
- www.zerodayinitiative.com/advisories/ZDI-21-1248/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.