CVE-2020-10148 | Cybersecurity Alerts | Nexus IT Services, LLC

← Back to Cybersecurity Alerts

CVE-2020-10148

SolarWinds | OrionAdded 2021-11-03Remediation Deadline 2022-05-03

SolarWinds Orion Authentication Bypass Vulnerability

SolarWinds Orion API contains an authentication bypass vulnerability that could allow a remote attacker to execute API commands.

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-288

References

https://nvd.nist.gov/vuln/detail/CVE-2020-10148