CVE-2021-35226

An entity in Network Configuration Manager product is misconfigured and exposing password field to Solarwinds Information Service (SWIS). Exposed credentials are encrypted and require authenticated access with an NCM role.
Configurations

Configuration 1

cpe:2.3:a:solarwinds:network_configuration_manager:*:*:*:*:*:*:*:*

Information

Published : 2022-10-10 11:15

Updated : 2022-10-11 06:59


NVD link : CVE-2021-35226

Mitre link : CVE-2021-35226

Products Affected
No products.
CWE
CWE-326

Inadequate Encryption Strength