CVE-2019-12863 : Security Advisory and Response
Learn about CVE-2019-12863, a vulnerability in SolarWinds Orion Platform 2018.4 HF3 allowing Stored HTML Injection. Find out the impact, affected systems, and mitigation steps.
SolarWinds Orion Platform 2018.4 HF3 (NPM 12.4, NetPath 1.1.4) allows Stored HTML Injection through the Web Console Settings screen.
Understanding CVE-2019-12863
This CVE involves a vulnerability in SolarWinds Orion Platform 2018.4 HF3 that enables Stored HTML Injection by administrators.
What is CVE-2019-12863?
Stored HTML Injection vulnerability in SolarWinds Orion Platform 2018.4 HF3 allows administrators to execute malicious code via the Web Console Settings screen.
The Impact of CVE-2019-12863
This vulnerability can be exploited by attackers to inject and execute arbitrary HTML or JavaScript code, potentially leading to unauthorized actions or data theft.
Technical Details of CVE-2019-12863
SolarWinds Orion Platform 2018.4 HF3 (NPM 12.4, NetPath 1.1.4) is susceptible to Stored HTML Injection.
Vulnerability Description
Administrators can leverage the Web Console Settings screen to perform Stored HTML Injection.
Affected Systems and Versions
- SolarWinds Orion Platform 2018.4 HF3
- NPM 12.4
- NetPath 1.1.4
Exploitation Mechanism
The vulnerability allows administrators to inject malicious HTML or JavaScript code through the Web Console Settings screen.
Mitigation and Prevention
Steps to address and prevent the CVE-2019-12863 vulnerability.
Immediate Steps to Take
- Disable access to the Web Console Settings screen for untrusted users.
- Implement strict input validation to prevent malicious code injection.
Long-Term Security Practices
- Regularly update SolarWinds Orion Platform to the latest version.
- Conduct security training for administrators on secure coding practices.
Patching and Updates
Apply patches and updates provided by SolarWinds to address the Stored HTML Injection vulnerability.