Network performance monitor
This hub aggregates every CVE we track for Network performance monitor, a product in the enterprise software space. Use it to gauge the current risk picture and drill into individual advisories.
8
CVEs tracked
1
Critical
2
High
0
In CISA KEV
Severity distribution
MEDIUM5HIGH2CRITICAL1
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
2024-082026-07
Latest CVEs
The 8 most recently published vulnerabilities affecting Network performance monitor.
- CVE-2021-35225Netpath Horizontal Privilege Escalation Vulnerability: NPM 2020.2.55.0
- CVE-2021-31474This vulnerability allows remote attackers to execute arbitrary code on affected installations of SolarWinds Network Performance Monitor 2020.2.1. Authentication is not required to exploit this vul...9.8
- CVE-2020-27869This vulnerability allows remote attackers to escalate privileges on affected installations of SolarWinds Network Performance Monitor 2020 HF1, NPM: 2020.2. Authentication is required to exploit th...8.8
- CVE-2019-12864SolarWinds Orion Platform 2018.4 HF3 (NPM 12.4, NetPath 1.1.4) is vulnerable to Information Leakage, because of improper error handling with stack traces, as demonstrated by discovering a full path...5.5
- CVE-2019-12863SolarWinds Orion Platform 2018.4 HF3 (NPM 12.4, NetPath 1.1.4) allows Stored HTML Injection by administrators via the Web Console Settings screen.4.8
- CVE-2018-13442SolarWinds Network Performance Monitor 12.3 allows SQL Injection via the /api/ActiveAlertsOnThisEntity/GetActiveAlerts TriggeringObjectEntityNames parameter.8.8
- CVE-2017-9538The 'Upload logo from external path' function of SolarWinds Network Performance Monitor version 12.0.15300.90 allows remote attackers to cause a denial of service (permanent display of a "Cannot ex...4.9
- CVE-2017-9537Persistent cross-site scripting (XSS) in the Add Node function of SolarWinds Network Performance Monitor version 12.0.15300.90 allows remote attackers to introduce arbitrary JavaScript into various...4.8
Product normalization is registry-driven with AI assist and human review. How it works