Test ID:	1.3.6.1.4.1.25623.1.0.106747
Category:	Web application abuses
Title:	SolarWinds Log and Event Manager Multiple Vulnerabilities
Summary:	SolarWinds LEM is prone to multiple vulnerabilities.
Description:	Summary: SolarWinds LEM is prone to multiple vulnerabilities. Vulnerability Insight: SolarWinds LEM is prone to multiple vulnerabilities: - CMC command injection - allows an attacker to inject commands to escape the restricted shell (CVE-2017-7722). - Arbitrary command injection - allows an authenticated user to execute arbitrary commands from the CMC restricted shell (CVE-2017-7647). - Access Control - allows an authenticated used to browse the LEM servers filesystem and read contents of arbitrary files (CVE-2017-7646). - Postgres Database Service - allows hardcoded credentials access to the Postgres database service via IPv6. - Arbitrary File Read - allows an attacker to edit the SSH logon banner & read arbitrary files. - Privilege Escalation - allows an attacker to run certain commands as a privileged user. Affected Software/OS: SolarWinds Log and Event Manager version 6.3.1 and prior. Solution: Upgrade to version 6.3.1 Hotfix 4 or later. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2017-7646 Common Vulnerability Exposure (CVE) ID: CVE-2017-7647 Common Vulnerability Exposure (CVE) ID: CVE-2017-7722 https://pentest.blog/unexpected-journey-4-escaping-from-restricted-shell-and-gaining-root-access-to-solarwinds-log-event-manager-siem-product/ https://thwack.solarwinds.com/thread/111223
Copyright	Copyright (C) 2017 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.