← Back

Netpath

netpath

Vendor: Solarwinds • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2019-12864
1Solarwinds
3Netpath
Network Performance MonitorOrion Platform
Nov 21, 2024
May 4, 2020
N/A· v4
5.5 MEDIUM· v3
2.1 LOW· v2
SolarWinds Orion Platform 2018.4 HF3 (NPM 12.4, NetPath 1.1.4) is vulnerable to Information Leakage, because of improper error handling with stack traces, as demonstrated by discovering a full pathname upon a 500 Interna...Show more
SolarWinds Orion Platform 2018.4 HF3 (NPM 12.4, NetPath 1.1.4) is vulnerable to Information Leakage, because of improper error handling with stack traces, as demonstrated by discovering a full pathname upon a 500 Internal Server Error via the api2/swis/query?lang=en-us&swAlertOnError=false query parameter.Show less
CVE-2019-12863
1Solarwinds
3Netpath
Network Performance MonitorOrion Platform
Nov 21, 2024
Feb 25, 2020
N/A· v4
4.8 MEDIUM· v3
3.5 LOW· v2
SolarWinds Orion Platform 2018.4 HF3 (NPM 12.4, NetPath 1.1.4) allows Stored HTML Injection by administrators via the Web Console Settings screen.