CVE-2021-35226 Information

Description

An entity in Network Configuration Manager product is misconfigured and exposing password field to Solarwinds Information Service (SWIS). Exposed credentials are encrypted and require authenticated access with an NCM role.

Reference

https://www.solarwinds.com/trust-center/security-advisories/cve-2021-35226