The host is installed with SolarWinds Orion Platform 2019.4.x before 2019.4 Hotfix 6 or 2020.2.x or 2020.2 Hotfix 2 and is prone to an authentication bypass vulnerability. A flaw is present in application, which fails to handle specific parameters in the Request.PathInfo portion of a URI request. Successful exploitation could allow a remote attacker to execute API commands.