Rewterz Threat Advisory – VMware Workstation Multiple Vulnerabilities
May 21, 2021Rewterz Threat Advisory – SolarWinds Orion Job Scheduler code execution
May 24, 2021Rewterz Threat Advisory – VMware Workstation Multiple Vulnerabilities
May 21, 2021Rewterz Threat Advisory – SolarWinds Orion Job Scheduler code execution
May 24, 2021Severity
High
Analysis Summary
CVE-2021-31474
SolarWinds Network Performance Monitor could allow a remote attacker to execute arbitrary code on the system, caused by an unsafe deserialization in the SolarWinds.Serialization library. By sending specially-crafted data, an attacker could exploit this vulnerability to execute arbitrary code in the context of SYSTEM.
Impact
Unauthorized Access
Affected Vendors
SolarWinds
Affected Products
Solarwinds Network Performance Monitor
Remediation
Refer to SolarWinds Web site for patch, upgrade or suggested workaround information.