Vulnerabilities > Solarwinds > Serv U > 15.4.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-16 | CVE-2024-45711 | Path Traversal vulnerability in Solarwinds Serv-U SolarWinds Serv-U is vulnerable to a directory traversal vulnerability where remote code execution is possible depending on privileges given to the authenticated user. | 8.8 |
| 2024-10-16 | CVE-2024-45714 | Cross-site Scripting vulnerability in Solarwinds Serv-U Application is vulnerable to Cross Site Scripting (XSS) an authenticated attacker with users’ permissions can modify a variable with a payload. | 4.1 |
| 2024-06-06 | CVE-2024-28995 | Unspecified vulnerability in Solarwinds Serv-U SolarWinds Serv-U was susceptible to a directory transversal vulnerability that would allow access to read sensitive files on the host machine. | 7.5 |
| 2024-05-03 | CVE-2024-28072 | Unspecified vulnerability in Solarwinds Serv-U A highly privileged account can overwrite arbitrary files on the system with log output. | 4.9 |
| 2024-04-17 | CVE-2024-28073 | Unspecified vulnerability in Solarwinds Serv-U SolarWinds Serv-U was found to be susceptible to a Directory Traversal Remote Code Vulnerability. | 7.2 |