SolarWinds Platform Information Disclosure Vulnerability

(CVE-2024-52611)

Summary

The SolarWinds Platform is vulnerable to an information disclosure vulnerability through an error message. While the data does not provide anything sensitive, the information could assist an attacker in other malicious actions.

Affected Products

SolarWinds Platform 2024.4.1 and older versions

Fixed Software Release

SolarWinds Platform 2025.1

Acknowledgments

Vicky Malekar, Ravi Khanchani and Techsa SolarWinds Team.

Advisory Details

Severity

3.5 Low

Advisory ID

CVE-2024-52611

First Published

02/11/2025

Fixed Version

SolarWinds Platform 2025.1

CVSS Score

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N