TR-21-0100 (SolarWinds Zafiyeti)

Genel Bilgi

Bazı SolarWinds ürünlerinde; Uzaktan Kod Çalıştırma ve XSS zafiyetleri tespit edilmiştir.

Etki

Bahsi geçen zafiyetlerin CVE kodları şu şekildedir:

CVE-2021-25275, CVE-2021-25274, CVE-2021-25276, CVE-2020-10148, CVE-2020-27994, CVE-2020-28001, CVE-2020-35481 ve CVE-2020-35482

Çözüm

Ulusal Siber Olaylara Müdahale Merkezi (USOM), sistem yöneticilerine; SolarWinds firmasının güvenlik bültenlerini takip etmelerini önermektedir.

Kaynaklar

https://www.securityweek.com/continuous-updates-everything-you-need-know-about-solarwinds-attack

https://thehackernews.com/2021/02/3-new-severe-security-vulnerabilities.html?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+TheHackersNews+%28The+Hackers+News+-+Cyber+Security+Blog%29

https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/full-system-control-with-new-solarwinds-orion-based-and-serv-u-ftp-vulnerabilities/

https://thehackernews.com/2021/01/heres-how-solarwinds-hackers-stayed.html

https://docs.microsoft.com/en-us/previous-versions/windows/desktop/msmq/ms711472(v=vs.85)

https://documentation.solarwinds.com/en/Success_Center/orionplatform/content/release_notes/orion_platform_2020-2-4_release_notes.htm

https://www.trustwave.com/en-us/resources/security-resources/security-advisories/?fid=28396

https://www.securityweek.com/solarwinds-product-vulnerabilities-allow-hackers-take-full-control-systems?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+Securityweek+%28SecurityWeek+RSS+Feed%29

2021-02-04