SolarWinds Product Security Update Advisory (CVE-2024-28991)

Sep 19 2024

Overview

An update has been released to address vulnerabilities in SolarWinds Products. Users of the affected versions are advised to update to the latest version.

Affected Products

CVE-2024-28991

SolarWinds Access Rights Manager (ARM) versions: ~ 2024.3 (inclusive)

Resolved Vulnerabilities

Remote code execution vulnerability in SolarWinds Access Rights Manager (ARM) (CVE-2024-28991)

Vulnerability Patches

The following product-specific Vulnerability Patches have been made available with the latest update. If you are using an affected version, Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2024-28991

SolarWinds Access Rights Manager (ARM) version: 2024.3.1

Referenced Sites

[1] CVE-2024-28991 Detail

https://nvd.nist.gov/vuln/detail/CVE-2024-28991

[2] SolarWinds Access Rights Manager (ARM) Deserialization of Untrusted Data Remote Code Execution Vulnerability (CVE-2024-28991)

https://www.solarwinds.com/trust-center/security-advisories/cve-2024-28991

SolarWinds Product Security Update Advisory (CVE-2024-28991)

Palo Alto Networks (PAN-OS,Cloud NGFW,Prisma Access,Prisma Access Browser,PAN-OS,GlobalProtect App,Cloud NGFW,Prisma Access,ActiveMQ Content Pack,Cortex XDR Agent) Family September 2024 Security Update Advisory

Mozilla Products September 2024 1st Security Update Advisory

Tags:

Palo Alto Networks (PAN-OS,Cloud NGFW,Prisma Access,Prisma Access Browser,PAN-OS,GlobalProtect App,Cloud NGFW,Prisma Access,ActiveMQ Content Pack,Cortex XDR Agent) Family September 2024 Security Update Advisory

Mozilla Products September 2024 1st Security Update Advisory