QID 375420
Date Published: 2021-03-27
QID 375420: SolarWinds Orion Platform Security Updates
SolarWinds Orion is an IT performance monitoring platform
Security Updates for SolarWinds Orion Platform 2020.2.5 Released on March 25, 2021 and address following issues.
Reverse Tabnabbing and Open Redirect (CVE-2021-3109)
Stored XSS in Customize view (CVE-2020-35856)
Affected Versions:
SolarWinds Orion products prior to Orion Platform 2020.2.5
QID Detection Logic (Authenticated):
The QID extracts Solarwinds Orion installation path from registry key "HKLM\SOFTWARE\SolarWinds\Orion\Core", value "InstallPath", then compare file version of "SolarWinds.Orion.Core.BusinessLayer.dll" with patched versions
When registry keys are not accessible, we skip the path extracting, directly check file versions of "%ProgramFiles%\SolarWinds\Orion\SolarWinds.Orion.Core.BusinessLayer.dll" and "%ProgramFiles(x86)%\SolarWinds\Orion\SolarWinds.Orion.Core.BusinessLayer.dll".
An attacker could exploit this vulnerability to compromise Confidentiality, Integrity and/or Availability.
Customers are advised to refer to Orion Platform 2020.2.5 Release Notes
- SolarWinds Orion Platform Security Updates 2020.2.5 -
documentation.solarwinds.com/en/Success_Center/orionplatform/Content/Release_Notes/Orion_Platform_2020-2-5_release_notes.htm
CVEs related to QID 375420
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| SolarWinds Orion Platform Security Updates 2020.2.5 |
documentation.solarwinds.com/en/Success_Center/orionplatform/Content/Release_Notes/Orion_Platform_2020-2-5_release_notes.htm |