Primary

Context

SolarWinds Platform Server-Side Request Forgery Vulnerability

Vulnerability

Patched

A server-side request forgery (SSRF) vulnerability has been identified in SolarWinds Platform. This vulnerability arises from inadequate input validation, which allows for the possibility of malicious web requests being sent. The issue is present in multiple versions of the platform.

Impact

Exploitation of this vulnerability could lead to server-side request forgery, allowing attackers to make unauthorized requests from the server's perspective.

Remediation

Users are advised to upgrade to SolarWinds Platform version 2025.1.1, available through the SolarWinds Customer Portal. For instructions on upgrading, refer to the SolarWinds Platform Product Installation and Upgrade Guide.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

5.7

impact

0.6

exploitability

4.9

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.7

impact

0.6

exploitability

4.9

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

SolarWinds Platform Server-Side Request Forgery Vulnerability

Vulnerability

Impact

Remediation

Affected Products

SolarWinds Platform

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating