Vulnerabilities > CVE-2024-28073 - Unspecified vulnerability in Solarwinds Serv-U

CVSS 7.2 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

solarwinds

NVD

Published: 2024-04-17

Updated: 2025-02-10

Summary

SolarWinds Serv-U was found to be susceptible to a Directory Traversal Remote Code Vulnerability. This vulnerability requires a highly privileged account to be exploited.

Vulnerable Configurations

Part	Description	Count
Application	Solarwinds Solarwinds Serv U 15.1 Solarwinds Serv U 15.1.1 Solarwinds Serv U 15.1.2 Solarwinds Serv U 15.1.3 Solarwinds Serv U 15.1.4 Solarwinds Serv U 15.1.5 Solarwinds Serv U 15.1.6 Solarwinds Serv U 15.1.7 Solarwinds Serv U 15.2.1 Solarwinds Serv U 15.2.2 Solarwinds Serv U 15.2.3 Solarwinds Serv U 15.2.4 Solarwinds Serv U 15.2.5 Solarwinds Serv U 15.3 Solarwinds Serv U 15.3.0 Solarwinds Serv U 15.3.1 Solarwinds Serv U 15.3.2 Solarwinds Serv U 15.4.0	33

Summary

Vulnerable Configurations

References