📦 Serv U
by Solarwinds
🔍 What is Serv U?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
A type confusion vulnerability in SolarWinds Serv-U allows attackers with administrative privileges to execute arbitrary native code with elevated privileges. This affects Serv-U deployments where adm...
A broken access control vulnerability in SolarWinds Serv-U allows domain or group administrators to create system admin users and execute arbitrary code with elevated privileges. This affects Serv-U d...
A missing validation vulnerability in SolarWinds Serv-U allows administrators to execute arbitrary code. This affects Serv-U deployments where administrative accounts could be compromised. The risk is...
A path restriction bypass vulnerability in SolarWinds Serv-U allows administrators to execute code on directories they shouldn't have access to. This affects Serv-U installations where administrative ...
A logic error vulnerability in SolarWinds Serv-U allows administrators to execute arbitrary code. This affects Serv-U deployments where an attacker gains administrative access. The vulnerability requi...
This is a critical remote code execution vulnerability in SolarWinds Serv-U products that allows attackers to execute arbitrary code with SYSTEM privileges on affected servers. It affects SolarWinds S...
SolarWinds Serv-U contains a directory traversal vulnerability that allows authenticated users to access files outside intended directories. When combined with software environment variable abuse, thi...
SolarWinds Serv-U contains a directory traversal vulnerability that allows attackers to read sensitive files on the host system. This affects organizations using vulnerable versions of SolarWinds Serv...
This vulnerability in SolarWinds Serv-U allows attackers with highly privileged accounts to perform directory traversal attacks, potentially leading to remote code execution. It affects organizations ...
This vulnerability allows administrators with existing access to bypass multi-factor authentication in Serv-U FTP server software. Attackers who already have administrator credentials can disable MFA ...
This vulnerability allows attackers with administrator access to Serv-U to bypass multi-factor authentication (MFA/2FA). It affects Serv-U 15.4 installations where MFA is enabled, potentially allowing...
CVE-2021-35250 is a directory traversal vulnerability in SolarWinds Serv-U FTP server that allows attackers to access files outside the intended directory structure. This affects Serv-U 15.3 installat...
This vulnerability in SolarWinds Serv-U is a Cross-Site Request Forgery (CSRF) flaw where the server improperly validates CSRF tokens when requests contain only session information. Attackers can tric...
CVE-2021-35223 is a remote code execution vulnerability in SolarWinds Serv-U File Server where user-supplied parameters in audit command execution can be exploited. This allows attackers to execute ar...