Network Configuration Manager

network_configuration_manager

Vendor: Solarwinds • 7 CVEs

CVEs (7)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-40055 1Solarwinds 1Network Configuration Manager Nov 21, 2024 Nov 9, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows a low-level user to perform the actions with SYSTEM privileges. We found this iss...Show more The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows a low-level user to perform the actions with SYSTEM privileges. We found this issue was not resolved in CVE-2023-33227Show less
CVE-2023-40054 1Solarwinds 1Network Configuration Manager Nov 21, 2024 Nov 9, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows a low-level user to perform the actions with SYSTEM privileges. We found this iss...Show more The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows a low-level user to perform the actions with SYSTEM privileges. We found this issue was not resolved in CVE-2023-33226Show less
CVE-2023-33228 1Solarwinds 1Network Configuration Manager Nov 21, 2024 Nov 1, 2023 N/A· v4 4.9 MEDIUM· v3 N/A· v2 The SolarWinds Network Configuration Manager was susceptible to the Exposure of Sensitive Information Vulnerability. This vulnerability allows users with administrative access to SolarWinds Web Console to obtain sensitiv...Show more The SolarWinds Network Configuration Manager was susceptible to the Exposure of Sensitive Information Vulnerability. This vulnerability allows users with administrative access to SolarWinds Web Console to obtain sensitive information.Show less
CVE-2023-33227 1Solarwinds 1Network Configuration Manager Nov 21, 2024 Nov 1, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability This vulnerability allows a low level user to perform the actions with SYSTEM privileges.
CVE-2023-33226 1Solarwinds 1Network Configuration Manager Nov 21, 2024 Nov 1, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 The Network Configuration Manager was susceptible to a Directory Traversal Remote Code Execution Vulnerability. This vulnerability allows a low-level user to perform the actions with SYSTEM privileges.
CVE-2021-35226 1Solarwinds 1Network Configuration Manager Feb 24, 2026 Oct 10, 2022 N/A· v4 6.5 MEDIUM· v3 N/A· v2 An entity in Network Configuration Manager product is misconfigured and exposing password field to Solarwinds Information Service (SWIS). Exposed credentials are encrypted and require authenticated access with an NCM rol...Show more An entity in Network Configuration Manager product is misconfigured and exposing password field to Solarwinds Information Service (SWIS). Exposed credentials are encrypted and require authenticated access with an NCM role.Show less
CVE-2014-3459 1Solarwinds 1Network Configuration Manager May 6, 2026 Aug 7, 2014 N/A· v4 N/A· v3 6.8 MEDIUM· v2 Heap-based buffer overflow in SolarWinds Network Configuration Manager (NCM) before 7.3 allows remote attackers to execute arbitrary code via the PEstrarg1 property.