MEDIUM🇵🇱 Wersja polska

CVE-2022-38113

CVSS 5.3v3.1pub. 2022-11-23upd. 2024-11-21

This vulnerability discloses build and services versions in the server response header.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
  • Solarwinds Security Event Manager

    APP
    Solarwinds
    2022.4
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2024-0692HIGH8.8ten sam produkt

The SolarWinds Security Event Manager was susceptible to Remote Code Execution Vulnerability. This vulnerabili...

CVE-2022-38114MEDIUM6.1ten sam produkt

This vulnerability occurs when a web server fails to correctly process the Content-Length of POST requests. Th...

CVE-2022-38115MEDIUM5.3ten sam produkt

Insecure method vulnerability in which allowed HTTP methods are disclosed. E.g., OPTIONS, DELETE, TRACE, and P...

CVE-2025-40551CRITICAL9.8⚠ KEVPL ✓ten sam vendor

RCE przez deserializację w SolarWinds Web Help Desk — bez uwierzytelnienia

CVE-2025-26399CRITICAL9.8⚠ KEVPL ✓ten sam vendor

RCE przez deserializację AjaxProxy w SolarWinds Web Help Desk (nieuwierzytelniony)