CVE-2023-35180 : What You Need to Know

A Remote Code Execution Vulnerability was discovered in SolarWinds Access Rights Manager, allowing authenticated users to abuse SolarWinds ARM API.

Understanding CVE-2023-35180

This CVE involves a Remote Code Execution vulnerability in SolarWinds Access Rights Manager, potentially leading to severe consequences.

What is CVE-2023-35180?

The SolarWinds Access Rights Manager was vulnerable to Remote Code Execution, enabling authenticated users to exploit SolarWinds ARM API.

The Impact of CVE-2023-35180

The impact of this vulnerability is significant, posing a high risk due to the ability to execute arbitrary code remotely.

Technical Details of CVE-2023-35180

This section delves into the specific technical aspects of the CVE, outlining the vulnerability, affected systems, and the exploitation mechanism.

Vulnerability Description

CVE-2023-35180 involves a Remote Code Execution vulnerability in SolarWinds Access Rights Manager due to deserialization of untrusted data.

Affected Systems and Versions

The vulnerability affects previous versions of SolarWinds Access Rights Manager up to 2023.2.0.73.

Exploitation Mechanism

The vulnerability allows authenticated users to exploit SolarWinds ARM API, potentially leading to remote code execution.

Mitigation and Prevention

In this section, we discuss the necessary steps to mitigate the risks posed by CVE-2023-35180 and prevent such vulnerabilities in the future.

Immediate Steps to Take

All SolarWinds Access Rights Manager customers are strongly advised to upgrade to the latest version, specifically SolarWinds Access Rights Manager 2023.2.1.

Long-Term Security Practices

Implement strict input validation, conduct regular security assessments, and stay informed about security advisories to enhance long-term security.

Patching and Updates

Regularly apply software patches and updates provided by SolarWinds to address security vulnerabilities and enhance system security.