CVE-2021-35225 : What You Need to Know

A detailed overview of CVE-2021-35225, a vulnerability impacting SolarWinds NPM 2020.2.5 that allows unauthorized access to NetPath Services.

Understanding CVE-2021-35225

This section provides insights into the nature and impact of the CVE-2021-35225 vulnerability.

What is CVE-2021-35225?

The CVE-2021-35225 vulnerability affects SolarWinds NPM 2020.2.5, allowing authenticated users to view and browse all NetPath Services within a Managed Service Provider (MSP) environment.

The Impact of CVE-2021-35225

The vulnerability can lead to unauthorized users gaining insights into other customers' infrastructure within the MSP environment, potentially causing data cross-contamination.

Technical Details of CVE-2021-35225

Explore the technical aspects of the CVE-2021-35225 vulnerability to understand its implications.

Vulnerability Description

Each authenticated Orion Platform user in an MSP environment can access all NetPath Services, posing a risk of data leakage and cross-contamination.

Affected Systems and Versions

The vulnerability impacts SolarWinds NPM version 2020.2.5 on Windows platforms, specifically versions prior to 2020.2.6 Hotfix 2.

Exploitation Mechanism

Unauthorized users can exploit the vulnerability to gain insights into other customers' NetPath Services within the MSP environment.

Mitigation and Prevention

Discover the necessary steps to mitigate and prevent the exploitation of CVE-2021-35225.

Immediate Steps to Take

To address the vulnerability, SolarWinds recommends upgrading to Network Performance Monitor 2020.2.6 Hotfix 2 and implementing restrictions on access rights via the Orion UI.

Long-Term Security Practices

In addition to immediate patching, customers should follow all recommendations outlined in the Orion Secure Configuration Guide to enhance security.

Patching and Updates

Regularly review and implement all available patches and updates for SolarWinds NPM to ensure ongoing protection against vulnerabilities.