Anonymous ID: 715cf3 Dec. 14, 2020, 7:26 a.m. No.12021249   🗄️.is 🔗kun   >>1518 >>1564 >>1668

https://us-cert.cisa.gov/ncas/bulletins/SB15-075

 

Solarwinds had problems before 2016

 

https://www.exploit-db.com/exploits/36262

 

I found a couple SQL injection vulnerabilities in the core Orion service

used in most of the Solarwinds products (SAM, IPAM, NPM, NCM, etc…). This

service provides a consistent configuration and authentication layer across

the products.

 

To be exact, the vulnerable applications and versions are:

 

Network Performance Monitor – < 11.5

NetFlow Traffic Analyzer – < 4.1

Network Configuration Manager – < 7.3.2

IP Address Manager – < 4.3

User Device Tracker – < 3.2

VoIP & Network Quality Manager – < 4.2

Server & Application Monitor – < 6.2

Web Performance Monitor – < 2.2

 

At first glance, the injections are only available to admins, as the

requests used are on the Manage Accounts page. However, it seems there is

no real ACL check on the GetAccounts and GetAccountGroups endpoints of the

AccountManagement.asmx service, which means that even authenticating as

Guest allows for exploitation. By default, the Guest account has no

password and is enabled.

Anonymous ID: 715cf3 Dec. 14, 2020, 7:46 a.m. No.12021485   🗄️.is 🔗kun   >>1518 >>1564 >>1668

https://simplywall.st/stocks/us/software/nyse-swi/solarwinds/news/have-insiders-been-selling-solarwinds-corporation-nyseswi-sh

 

November 19, 2020

 

SolarWinds Insider Transactions Over The Last Year

The President, Kevin Thompson, made the biggest insider sale in the last 12 months. That single transaction was for US$7.0m worth of shares at a price of US$19.52 each. That means that an insider was selling shares at slightly below the current price (US$21.43). When an insider sells below the current price, it suggests that they considered that lower price to be fair. That makes us wonder what they think of the (higher) recent valuation. However, while insider selling is sometimes discouraging, it's only a weak signal. This single sale was just 13% of Kevin Thompson's stake.

 

Insiders in SolarWinds didn't buy any shares in the last year. The chart below shows insider transactions (by companies and individuals) over the last year. If you click on the chart, you can see all the individual transactions, including the share price, individual, and the date!

 

https://exechange.com/20404/solarwinds-ceo-kevin-thompson-leaves

 

SolarWinds CEO Kevin Thompson leaves

Push-out Score determined

After almost 11 years in the position

Praise and thanks for Thompson

Sudhakar Ramakrishna taking over

(exechange) — Austin, Texas, December 9, 2020 — Kevin Thompson, chief executive of SolarWinds, leaves. As announced by SolarWinds Corp. in a news release and in a regulatory filing published on Wednesday, December 9, 2020, Kevin B. Thompson leaves his post as chief executive officer of the provider of IT management software after almost 11 years in the role, effective December 31, 2020.

 

Kevin Thompson’s duties as CEO will be taken over by Sudhakar Ramakrishna, most recently Chief Executive Officer of Pulse Secure, LLC.

 

The fact that Kevin Thompson’s successor is brought in from outside suggests that the board may seek to stimulate change with fresh ideas and new initiatives.