漏洞描述
SolarWinds网络性能监视器(NPM)中存在不安全的反序列化漏洞。该漏洞是由于未对TextFormattingRunProperties类的反序列化内容进行校验导致的。
SolarWinds网络性能监视器 CVE-2022-38111不安全的反序列化漏洞
PoC代码
暂无相关漏洞推荐
- POC CVE-2018-19386: SolarWinds Database Performance Analyzer 11.1.457 - Cross-Site Scripting
- POC CVE-2020-10148: SolarWinds Orion API - Auth Bypass
- POC CVE-2021-35250: SolarWinds Serv-U 15.3 - Directory Traversal
- POC CVE-2024-0692: SolarWinds Security Event Manager - Unauthenticated RCE
- POC CVE-2024-28987: SolarWinds Web Help Desk - Hardcoded Credential
- POC CVE-2024-28995: SolarWinds Serv-U - Directory Traversal
- POC CVE-2020-10148: SolarWinds Orion Platform Authentication Bypass
- POC solarwinds-default-admin: SolarWinds Orion Default Login
- SolarWinds Web Help Desk 硬编码漏洞(CVE-2024-28987)
- SolarWinds Web Help Desk 反序列化漏洞 可致远程代码执行
- SolarWinds Web Help Desk 存在硬编码漏洞
- SolarWinds Access Rights Manager 需授权 反序列化漏洞
- SolarWinds Security Event Manager AMF CVE-2024-0692 不安全的反序列化漏洞