Trust Center Index Page SolarWinds Trust Center Security Advisories | CVE-2021-35226
Hashed Credential Exposure Vulnerability CVE-2021-35226

Summary

An entity in Network Configuration Manager (NCM) product is misconfigured and exposes password field to Solarwinds Information Service (SWIS). Exposed credentials are encrypted and require authenticated access with an NCM role.

Affected Products

  • NCM 2020.2.5 and previous versions

Fixed Software Release

Acknowledgments

  • Preston Deason
  • Chad Larsen
  • Zachary Riezenman

Advisory Details

Severity

2.7 Low

Advisory ID

CVE-2021-35226

First Published

09/28/2022

{{STATIC CONTENT}}
{{CAPTION_TITLE}}

{{CAPTION_CONTENT}}

{{TITLE}}