SolarWinds Orion Vulnerabilities

The Department of Homeland Security Cybersecurity and Infrastructure
Security Agency (CISA) issued an Emergency Directive on December 13,
2020 in response to the compromise of the SolarWinds Orion product for
all federal civilian agencies. The directive calls for all organizations
to assess their exposure to the compromise and secure their networks
against exploitation.

The following SolarWinds Orion versions are affected:

Orion Platform 2019.4 HF5, version 2019.4.5200.9083
Orion Platform 2020.2 RC1, version 2020.2.100.12219
Orion Platform 2020.2 RC2, version 2020.2.5200.12394
Orion Platform 2020.2, 2020.2 HF1, version 2020.2.5300.12432

CISA (US Cybersecurity and Infrastructure Security Agency) have issued
an alert (AA20-352A) to include additional Indicators of Compromise
(IoCs) and further mitigation advice.
For details information and detection countermeasures please visit
following URL’s