Multiple Vulnerabilities in SolarWinds Orion
Common Information
| Type | Value |
|---|---|
| UUID | ad3ccf6a-5567-4276-897c-390bcc2fb7f8 |
| Fingerprint | 0f9b1ea9e90fd9f0b1fe786d54d28abb44c6064fb6daba7872cb5fbee1013cd9 |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Jan. 12, 2021, 9:20 p.m. |
| Added to db | March 10, 2024, 11:28 a.m. |
| Last updated | Aug. 31, 2024, 5:16 a.m. |
| Headline | Multiple Vulnerabilities in SolarWinds Orion |
| Title | Multiple Vulnerabilities in SolarWinds Orion |
| Detected Hints/Tags/Attributes | 59/1/35 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 161 | ✔ | — | https://media.cert.europa.eu/cert/Data/newsletter/reviewlatest-SecurityBulletins.xml | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 2 | cve-2020-14005 |
|
| Details | CVE | 1 | cve-2020-13169 |
|
| Details | CVE | 1 | cve-2019-8917 |
|
| Details | Domain | 50 | avsvmcloud.com |
|
| Details | Domain | 11 | api.solarwinds.com |
|
| Details | Domain | 224 | unit42.paloaltonetworks.com |
|
| Details | Domain | 41 | www.cisecurity.org |
|
| Details | Domain | 243 | cve.mitre.org |
|
| Details | Domain | 43 | www.solarwinds.com |
|
| Details | Domain | 16 | www.domaintools.com |
|
| Details | Domain | 154 | us-cert.cisa.gov |
|
| Details | Domain | 251 | www.bleepingcomputer.com |
|
| Details | Domain | 36 | www.volexity.com |
|
| Details | Domain | 397 | www.microsoft.com |
|
| Details | Domain | 6 | support.solarwinds.com |
|
| Details | Domain | 1373 | twitter.com |
|
| Details | File | 29 | orion.core |
|
| Details | File | 26 | businesslayer.dll |
|
| Details | File | 13 | businesslayerhost.exe |
|
| Details | File | 11 | b6031896.dll |
|
| Details | File | 1 | supply-chain-compromises-with-sunburst-backdoor.html |
|
| Details | Url | 1 | https://unit42.paloaltonetworks.com/solarstorm-supernova |
|
| Details | Url | 1 | https://www.cisecurity.org/advisory/multiple-vulnerabilities-in-solarwinds-orion-could-allow-for- |
|
| Details | Url | 106 | https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve |
|
| Details | Url | 6 | https://www.solarwinds.com/securityadvisory |
|
| Details | Url | 1 | https://www.fireeye.com/blog/threat-research/2020/12/evasive-attacker-leverages-solarwinds- |
|
| Details | Url | 1 | https://www.domaintools.com/resources/blog/continuous-eruption-further-analysis-of-the- |
|
| Details | Url | 1 | https://us-cert.cisa.gov/ncas/alerts/aa20-352a |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/the-solarwinds-cyberattack-the-hack-the- |
|
| Details | Url | 1 | https://www.volexity.com/blog/2020/12/16/responding-to-the-solarwinds-breach |
|
| Details | Url | 1 | https://www.microsoft.com/security/blog/2020/12/18/analyzing-solorigate-the-compromised- |
|
| Details | Url | 1 | https://www.bleepingcomputer.com/news/security/new-supernova-backdoor-found-in- |
|
| Details | Url | 1 | https://support.solarwinds.com/successcenter/s/article/cve-2019-8917-npm-vulnerability? |
|
| Details | Url | 1 | https://twitter.com/itsreallynick/status/1339530685548290051?s=20 |
|
| Details | Windows Registry Key | 8 | HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography |