VYPR
Unrated severityNVD Advisory· Published Oct 20, 2022· Updated May 7, 2025

Insecure Direct Object Reference Vulnerability: Orion Platform 2020.2.6

CVE-2022-36966

Description

Users with Node Management rights were able to view and edit all nodes due to Insufficient control on URL parameter causing insecure direct object reference (IDOR) vulnerability in SolarWinds Platform 2022.3 and previous.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.