Flaws enable attackers to perform remote code execution without admin privileges. All users are encouraged to update to Version 2024.3 as soon as possible. Credit: Shutterstock US software development company Solarwinds has sent out important security fixes that close a number of critical vulnerabilities in its Access Rights Manager software. Six of the vulnerabilities scored 9.6 out of 10 on the Common Vulnerability Scoring Scale (CVSS), which means hackers can attack unprotected systems without having to gain administrator rights to gain remote code execution (RCE) on unpatched systems. Access Rights Manager enables administrators to manage and audit access rights across their IT infrastructure. Users are advised to update to Version 2024.3 of Access Rights Manager as soon as possible. The company has not said whether any of these flaws have been exploited in the wild. In addition to the aforementioned security fixes, the new version also contains various bug fixes, Bleeping Computer reports. Related content news Google ups bug bounties for ‘high quality’ Chrome hunters Security researchers can now earn a quarter million dollars reporting high-impact memory corruption vulnerabilities in Chrome. By CSO Staff and Mikael Markander 29 Aug 2024 3 mins Vulnerabilities news Critical plugin flaw opens over a million WordPress sites to RCE attacks The multilingual plugin is hit with a critical bug that can allow complete site compromise through remote code execution. By Shweta Sharma 28 Aug 2024 3 mins Vulnerabilities feature Is the vulnerability disclosure process glitched? How CISOs are being left in the dark Better communication and collaboration between researchers and vendors and improved bug reporting mechanisms could help address confusing and sometimes wholly suppressed bug reports. By Cynthia Brumfield 26 Aug 2024 10 mins CSO and CISO Threat and Vulnerability Management Data and Information Security news WordPress users not on Windows urged to update due to critical LiteSpeed Cache flaw Updating to version 6.4 or higher will prevent exploitation of the vulnerability that allows attacker to gain admin access. By Lynn Greiner 23 Aug 2024 3 mins Threat and Vulnerability Management Identity and Access Management Vulnerabilities PODCASTS VIDEOS RESOURCES EVENTS SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe