CVEs (3)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Solarwinds 1Virtualization Manager May 6, 2026 Jun 24, 2016 N/A· v4 4.7 MEDIUM· v3 1.9 LOW· v2 SolarWinds Virtualization Manager 6.3.1 and earlier uses weak encryption to store passwords in /etc/shadow, which allows local users with superuser privileges to obtain user passwords via a brute force attack. |
1Solarwinds 1Virtualization Manager Apr 21, 2026 Jun 17, 2016 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 SolarWinds Virtualization Manager 6.3.1 and earlier allow local users to gain privileges by leveraging a misconfiguration of sudo, as demonstrated by "sudo cat /etc/passwd." |
1Solarwinds 1Virtualization Manager May 6, 2026 Jun 17, 2016 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 The RMI service in SolarWinds Virtualization Manager 6.3.1 and earlier allows remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library. |