Primary

Context

SolarWinds Database Performance Analyzer Hard-Coded Cryptographic Key Vulnerability Allowing Machine-in-the-Middle Attacks

Vulnerability

Patched

A vulnerability exists in SolarWinds Database Performance Analyzer due to a hard-coded cryptographic key. This issue could facilitate a machine-in-the-middle (MITM) attack against users. Exploitation of this vulnerability requires local access to the server, administrator privileges on the host, and additional software not installed by default.

Impact

Exploitation could lead to a machine-in-the-middle (MITM) attack, allowing interception and possibly manipulation of communications between the user and the server.

Added: Aug 12, 2025, 8:17 AM

Updated: Aug 12, 2025, 8:17 AM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

1.3

exploitability

5.6

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

1.3

exploitability

5.6

remediation

7.7

relevance

0.3

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

SolarWinds Database Performance Analyzer Hard-Coded Cryptographic Key Vulnerability Allowing Machine-in-the-Middle Attacks

Vulnerability

Impact

Affected Products

SolarWinds Database Performance Analyzer

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating