📦

log_and_event_manager

Vendor: solarwinds

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 3 Remote Access

Total CVEs 43 Total Indexed

Avg. EPSS 11.30% Exploit Prob.

Latest CVE CVE-2017-5199 Mar 24

Security Vulnerability Index

Page 1 / 5

8.8 CVSS

CVE-2017-5199

The editbanner feature in SolarWinds LEM (aka SIEM) through 6.3.1 allows remote authenticated users to execute arbitrary code by editing /usr/local/contego/scripts/mgrconfig.pl.

EPSS: 2.83%

Severity: HIGH

Mar 24, 2017

8.8 CVSS

CVE-2017-5198

SolarWinds LEM (aka SIEM) before 6.3.1 has an incorrect sudo configuration, which allows local users to obtain root access by editing /usr/local/contego/scripts/hostname.sh.

EPSS: 0.10%

Severity: HIGH

Mar 24, 2017

7.5 CVSS

CVE-2015-7840

RCE

The command line management console (CMC) in SolarWinds Log and Event Manager (LEM) before 6.2.0 allows remote attackers to execute arbitrary code via unspecified vectors involving the ping feature.

EPSS: 19.52%

Severity: HIGH

Oct 15, 2015

7.5 CVSS

CVE-2015-7839

RCE

SolarWinds Log and Event Manager (LEM) allows remote attackers to execute arbitrary commands on managed computers via a request to services/messagebroker/nonsecurestreamingamf involving the traceroute functionality.

EPSS: 8.61%

Severity: HIGH

Oct 15, 2015

7.5 CVSS

CVE-2014-5504

RCE

SolarWinds Log and Event Manager before 6.0 uses "static" credentials, which makes it easier for remote attackers to obtain access to the database and execute arbitrary code via unspecified vectors, related to HyperSQL.

EPSS: 25.45%

Severity: HIGH

Sep 04, 2014

Displaying 5 of 43 Total Entries

1 2 3 4 5

Total 5 Sections