# CVE-2024-23470

> The SolarWinds Access Rights Manager was found to be susceptible to a pre-authentication remote code execution vulnerability. If exploited, this vulnerability allows an unauthenticated user to run commands and executables.

- **CVSS:** 9.6 (CRITICAL)
- **EPSS:** 2.0%
- **CWE:** CWE-287

Canonical: https://intel.threadlinqs.com/cve/CVE-2024-23470
Full threat coverage + IOCs via the Threadlinqs MCP server (Purple tier): https://intel.threadlinqs.com/mcp