A recently discovered vulnerability in SolarWinds Access Rights Manager (ARM) could potentially compromise data confidentiality, warns the French Computer Emergency Response Team (CERT-FR). The flaw affects ARM versions predating 2023.2.2. Exploiting this vulnerability might enable unauthorized access, posing a risk to sensitive information.
To address this issue, users are advised to refer to SolarWinds’ security bulletin, specifically cve-2023-40058, released on December 20, 2023, for obtaining the necessary patches. The identified vulnerability underscores the importance of prompt updates and robust cybersecurity measures to safeguard against potential exploits.