CNNVD-202510-2770 Information

Oct 21, 2025 cve

CNNVD ID

CNNVD-202510-2770

CVE-2025-26392

  • CNNVD Published: 2025-10-21

Description (Chinese)

SolarWinds Observability Self-Hosted是美国SolarWinds公司的一款观察平台。 SolarWinds Observability Self-Hosted存在SQL注入漏洞,该漏洞源于容易受到SQL注入攻击,可能导致敏感数据泄露。

Description (English)

SolarWinds Observability Self-Hosted is an observation platform for SolarWinds in the United States. SolarWinds Observability Self-Hosted has an injection loophole in SQL, which stems from its vulnerability to SQL injection attacks and may lead to the disclosure of sensitive data.

Hazard Level

High

Vulnerability Type

SQL注入

Affected Vendor

SolarWinds

Published

2025-10-21

Last Modified

2026-02-24

References

https://documentation.solarwinds.com/en/success_center/orionplatform/content/release_notes/hco_2025-4_release_notes.htm https://www.solarwinds.com/trust-center/security-advisories/CVE-2025-26392

Patch

https://www.solarwinds.com/trust-center/security-advisories/cve-2025-26392

Share on: