CVE Vulnerabilities

CVE-2023-40058

Published: Dec 21, 2023 | Modified: Feb 02, 2024

CVSS 3.x

6.5

MEDIUM

Source:

NVD

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CVSS 2.x

RedHat/V2

RedHat/V3

Ubuntu

Additional information

NVD	https://nvd.nist.gov/vuln/detail/CVE-2023-40058
CWE	https://cwe.mitre.org/data/definitions/.html

Sensitive data was added to our public-facing knowledgebase that, if exploited, could be used to access components of Access Rights Manager (ARM) if the threat actor is in the same environment.

Affected Software

Name	Vendor	Start Version	End Version
Access_rights_manager	Solarwinds	*	2023.2.1 (including)

References

https://www.solarwinds.com/trust-center/security-advisories/CVE-2023-40058

Aqua Container Security

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.