SolarWinds Platform Cross-Site Scripting Vulnerability 

(CVE-2024-45717)

Summary

The SolarWinds Platform was susceptible to a XSS vulnerability that affects the search and node information section of the user interface. This vulnerability requires authentication and requires user interaction.

Affected Products

  • SolarWinds Platform 2024.4 and prior versions

Fixed Software Release

Acknowledgments

  • Frank Lycops, NATO Cyber Security Centre

Advisory Details

Severity

7.0 High

Advisory ID

First Published

12/04/2024