SolarWinds Flaw Flagged by NATO Pen Tester

Introduction

SolarWinds has rolled out its latest platform update, version 2024.2, which not only introduces new features and enhancements but also addresses three critical security vulnerabilities.

Highlighted Vulnerabilities

Among the patched vulnerabilities, one of the most notable is a high-severity SWQL injection bug, identified as CVE-2024-28996 with a CVSS score of 7.5. This flaw was reported by Nils Putnins, a penetration tester affiliated with NATO. Additionally, the update addresses a high-severity cross-site scripting (XSS) vulnerability, tracked as CVE-2024-29004 (CVSS 7.1), and a medium-severity race condition vulnerability affecting the Web console, tracked as CVE-2024-28999 (CVSS 7.1).

Enhancements in the Latest Update

Beyond the critical security fixes, version 2024.2 of SolarWinds includes several improvements aimed at enhancing map functionality, as well as overall stability, performance, and user experience. These upgrades are designed to provide a more robust and user-friendly platform for SolarWinds customers.

Security Assurance

SolarWinds has assured Dark Reading that there is no evidence to suggest that these vulnerabilities have been exploited in the wild. This proactive approach to security ensures that their systems remain secure and resilient against potential threats.

Historical Context

This update follows the infamous 2020 cyberattack on SolarWinds, where a nation-state actor successfully compromised several high-profile organizations, including multiple US federal agencies. The 2020 breach underscores the importance of maintaining stringent security measures and timely patch updates.

Conclusion

The latest SolarWinds update highlights the company's commitment to security and continuous improvement. By addressing these critical vulnerabilities and enhancing platform features, SolarWinds aims to provide a secure and efficient experience for its users. Stay tuned to Dark Reading for more updates on cybersecurity news and developments.

About Foresiet!

Foresiet is the pioneering force in digital security solutions, offering the first integrated Digital Risk Protection SaaS platform. With 24x7x365 dark web monitoring and proactive threat intelligence, Foresiet safeguards against data breaches and intellectual property theft. Our robust suite includes brand protection, takedown services, and supply chain assessment, enhancing your organization's defense mechanisms. Attack surface management is a key component of our approach, ensuring comprehensive protection across all vulnerable points. Compliance is assured through adherence to ISO27001, NIST, GDPR, PCI, SOX, HIPAA, SAMA, CITC, and Third Party regulations. Additionally, our advanced antiphishing shield provides unparalleled protection against malicious emails. Trust Foresiet to empower your organization to navigate the digital landscape securely and confidently.