Privilege Escalation via Misconfigured Sudo in SolarWinds Virtualization Manager

Privilege Escalation via Misconfigured Sudo in SolarWinds Virtualization Manager

CVE-2016-3643 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

SolarWinds Virtualization Manager 6.3.1 and earlier allow local users to gain privileges by leveraging a misconfiguration of sudo, as demonstrated by "sudo cat /etc/passwd."

Learn more about our User Device Pen Test.