Assigner | SolarWinds |
Reserved | 2024-03-13 |
Published | 2024-06-06 |
Updated | 2024-07-17 |
Description
SolarWinds Serv-U was susceptible to a directory transversal vulnerability that would allow access to read sensitive files on the host machine.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N |
Problem types
CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Product status
15.4.2 HF 1 and previous versions
Credits
Hussein Daher
References
https://www.solarwinds.com/trust-center/security-advisories/CVE-2024-28995