SolarWinds.Orion.Local.File.Inclusion
Description
This indicates an attack attempt to exploit a Local File Inclusion vulnerability in SolarWinds Orion.
The vulnerability is due to an error when the vulnerable software handles a maliciously crafted request. A remote attacker may be able to exploit this to gain access to sensitive information.
Affected Products
SolarWinds Orion before 2019.4 HF 6 or 2020.2.1 HF 2
Impact
Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems
Recommended Actions
Apply the most recent upgrade or patch from the vendor:
https://www.solarwinds.com/securityadvisory
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |