How severe is CVE-2021-35226?

CVE-2021-35226 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2021-35226

Name: network_configuration_manager
Author: solarwinds

6.5MEDIUM

An entity in Network Configuration Manager product is misconfigured and exposing password field to Solarwinds Information Service (SWIS). Exposed credentials are encrypted and require authenticated ac

Published: 10/10/2022Updated: 11/21/2024

Description

An entity in Network Configuration Manager product is misconfigured and exposing password field to Solarwinds Information Service (SWIS). Exposed credentials are encrypted and require authenticated access with an NCM role.

AI AnalysisPowered by AI

Affected Products

solarwindsnetwork_configuration_manager

References

https://www.solarwinds.com/trust-center/security-advisories/cve-2021-35226
PatchVendor Advisory
https://www.solarwinds.com/trust-center/security-advisories/cve-2021-35226
PatchVendor Advisory