SolarWinds Orion Job Scheduler 2020.2.1 Hotfix 2
Approved changes feed: RSS · Atom
cpe:2.3:a:solarwinds:orion_job_scheduler:2020.2.1:hotfix2:*:*:*:*:*:*
part: a version: 2020.2.1 update: hotfix2
| Vendor | Solarwinds (c393915a-764f-5773-8a18-db4a4d0f1496) |
|---|---|
| Product | Orion Job Scheduler (36cfa3a6-81ab-577e-bff7-25c4cd22cfc1) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2021-31475 |
vulnerable | 2026-06-03 14:44:33.167466 |
Details available
HIGH (8.8)
This vulnerability allows remote attackers to execute arbitrary code on affected installations of SolarWinds Orion Job Scheduler 2020.2.1 HF 2. Authentication is required to exploit this vulnerability. The specific flaw exists within the JobRouterService WCF service. The issue is due to the WCF service configuration, which allows a critical resource to be accessed by unprivileged users. An attacker can leverage this vulnerability to execute code in the context of an administrator. Was ZDI-CAN-12007.
Published: 2021-05-21T14:40:15.000Z
Updated: 2024-08-03T23:03:32.661Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.