CVE-2021-35244

high

Description

The "Log alert to a file" action within action management enables any Orion Platform user with Orion alert management rights to write to any file. An attacker with Orion alert management rights could use this vulnerability to perform an unrestricted file upload causing a remote code execution.

References

https://www.zerodayinitiative.com/advisories/ZDI-22-375/

https://www.solarwinds.com/trust-center/security-advisories/cve-2021-35242

https://support.solarwinds.com/SuccessCenter/s/article/Orion-Platform-2020-2-6-Hotfix-3?language=en_US

https://documentation.solarwinds.com/en/Success_Center/orionplatform/content/core-secure-configuration.htm

Details

Source: Mitre, NVD

Published: 2021-12-20

Updated: 2026-06-17

Risk Information

CVSS v2

Base Score: 8.5

Vector: CVSS2#AV:N/AC:M/Au:S/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 7.2

Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.05769