Vulnerabilities > Solarwinds > Serv U FTP Server > 15.1.7

DATE CVE VULNERABILITY TITLE RISK
2020-07-05 CVE-2020-15543 Improper Input Validation vulnerability in Solarwinds Serv-U FTP Server
SolarWinds Serv-U FTP server before 15.2.1 does not validate an argument path.
network
low complexity
solarwinds CWE-20
critical
 9.8
9.8
2020-07-05 CVE-2020-15542 Unspecified vulnerability in Solarwinds Serv-U FTP Server
SolarWinds Serv-U FTP server before 15.2.1 mishandles the CHMOD command.
network
low complexity
solarwinds
critical
 9.8
9.8
2020-07-05 CVE-2020-15541 Unspecified vulnerability in Solarwinds Serv-U FTP Server
SolarWinds Serv-U FTP server before 15.2.1 allows remote command execution.
network
low complexity
solarwinds
critical
 9.8
9.8
2019-12-18 CVE-2019-19829 Cross-site Scripting vulnerability in Solarwinds Serv-U FTP Server 15.1.7
A cross-site scripting (XSS) vulnerability exists in SolarWinds Serv-U FTP Server 15.1.7 in the email parameter, a different vulnerability than CVE-2018-19934 and CVE-2019-13182.
network
low complexity
solarwinds CWE-79
5.4
5.4
2019-12-16 CVE-2019-13182 Cross-site Scripting vulnerability in Solarwinds Serv-U FTP Server 15.1.7
A stored cross-site scripting (XSS) vulnerability exists in the web UI of SolarWinds Serv-U FTP Server 15.1.7.
network
low complexity
solarwinds CWE-79
5.4
5.4
2019-12-16 CVE-2019-13181 Improper Neutralization of Formula Elements in a CSV File vulnerability in Solarwinds Serv-U FTP Server 15.1.7
A CSV injection vulnerability exists in the web UI of SolarWinds Serv-U FTP Server v15.1.7.
network
low complexity
solarwinds CWE-1236
6.5
6.5