March 12, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Advisory – ICS: Advantech R-SeeNet Vulnerability
October 20, 2023Rewterz Threat Advisory – Multiple WhatsApp Vulnerabilities
October 20, 2023Rewterz Threat Advisory – ICS: Advantech R-SeeNet Vulnerability
October 20, 2023Rewterz Threat Advisory – Multiple WhatsApp Vulnerabilities
October 20, 2023
Severity
High
Analysis Summary
CVE-2023-35187 CVSS:9.8
SolarWinds Access Rights Manager could allow a remote attacker to execute arbitrary code on the system, caused by a directory traversal flaw in the OpenClientUpdateFile method. By sending a specially crafted request, an attacker could exploit this vulnerability to execute arbitrary code in the context of system.
CVE-2023-35186 CVSS:8.8
SolarWinds Access Rights Manager could allow a remote authenticated attacker to execute arbitrary code on the system, caused by an unsafe deserialization flaw in the GetParameterFormTemplateWithSelectionState method. By sending a specially crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system.
CVE-2023-35185 CVSS:9.8
SolarWinds Access Rights Manager could allow a remote attacker to execute arbitrary code on the system, caused by a directory traversal flaw in the OpenFile method. By sending a specially crafted request, an attacker could exploit this vulnerability to execute arbitrary code in the context of system.
CVE-2023-35182 CVSS:9.8
SolarWinds Access Rights Manager could allow a remote attacker to execute arbitrary code on the system, caused by an unsafe deserialization in the createGlobalServerChannelInternal method. By sending a specially crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system.
CVE-2023-35184 CVSS:8.8
SolarWinds Access Rights Manager could allow a remote authenticated attacker to execute arbitrary code on the system, caused by an unsafe deserialization in the ExecuteAction method. By sending a specially crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system.
CVE-2023-35183 CVSS:7.8
SolarWinds Access Rights Manager could allow a local authenticated attacker to gain elevated privileges on the system, caused by an incorrect default permissions flaw in the installer. By sending a specially crafted request, an authenticated attacker could exploit this vulnerability to gain elevated privileges and execute arbitrary code in the context of system.
CVE-2023-35181 CVSS:7.8
SolarWinds Access Rights Manager could allow a local authenticated attacker to gain elevated privileges on the system, caused by an incorrect default permissions flaw in the installer. By sending a specially crafted request, an authenticated attacker could exploit this vulnerability to gain elevated privileges and execute arbitrary code in the context of system.
CVE-2023-35180 CVSS:8.8
SolarWinds Access Rights Manager could allow a remote authenticated attacker to execute arbitrary code on the system, caused by an unsafe deserialization in the IFormTemplate component. By sending a specially crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system.
Impact
- Code Execution
- Gain Access
- Privilege Escalation
Indicators Of Compromise
CVE
- CVE-2023-35187
- CVE-2023-35186
- CVE-2023-35185
- CVE-2023-35182
- CVE-2023-35184
- CVE-2023-35183
- CVE-2023-35181
- CVE-2023-35180
Affected Vendors
SolarWinds
Affected Products
- SolarWinds Access Rights Manager 2023.2
Remediation
Upgrade to the latest version of Access Rights Manager, available from the SolarWinds Web site.