As an update to our blog post, SolarWinds Software is Being Actively Exploited, SolarWinds has issued an advisory today in which they ask customers who are using affected products listed in conjunction with: Orion Platform v2020.2 with no hotfix or 2020.2 HF 1 to upgrade to Orion Platform version 2020.2.1 HF 2 and Orion Platform v2019.4 HF 5 to upgrade to Orion 2019.4 HF 6. Additionally, The hotfix release 2020.2.1 HF 2 is now available in the SolarWinds Customer Portal. Please see the above-mentioned advisory for a list of all affected Orion products and links to upgrade.
If present and activated, this vulnerability allows malicious actors to compromise the server(s) on which Orion products run. For additional information, please see the following SolarWinds FAQ page.