CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2024-52611: SolarWinds Platform Information Disclosure Vulnerability

3.5 CVSS

Description

The SolarWinds Platform is vulnerable to an information disclosure vulnerability through an error message. While the data does not provide anything sensitive, the information could assist an attacker in other malicious actions.

Classification

CVE ID: CVE-2024-52611

CVSS Base Severity: LOW

CVSS Base Score: 3.5

CVSS Vector: CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Affected Products

Vendor: SolarWinds

Product: SolarWinds Platform

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.04% (probability of being exploited)

EPSS Percentile: 11.94% (scored less or equal to compared to others)

EPSS Date: 2025-03-12 (when was this score calculated)

References

https://documentation.solarwinds.com/en/success_center/orionplatform/content/release_notes/solarwinds_platform_2025-1_release_notes.htm
https://www.solarwinds.com/trust-center/security-advisories/CVE-2024-52611

Timeline

2025-02-12 00:31:33 UTC
CVE

SolarWinds Platform Information Disclosure Vulnerability