threat
engine
.sh
Back
·
··:··
Home
/
Product
/
solarwinds serv u
Product
solarwinds serv u
43 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2025-40541
< 15.5.4
An Insecure Direct Object Reference (IDOR) vulnerability exists in Serv-U, which when exploited, gives a malicious actor the abili
9.1
CRITICAL
CVE-2025-40540
< 15.5.4
A type confusion vulnerability exists in Serv-U which when exploited, gives a malicious actor the ability to execute arbitrary nat
9.1
CRITICAL
CVE-2025-40539
< 15.5.4
A type confusion vulnerability exists in Serv-U which when exploited, gives a malicious actor the ability to execute arbitrary nat
9.1
CRITICAL
CVE-2025-40538
< 15.5.4
A broken access control vulnerability exists in Serv-U which when exploited, gives a malicious actor the ability to create a syste
9.1
CRITICAL
CVE-2025-40549
< 15.5.3
A Path Restriction Bypass vulnerability exists in Serv-U that when abused, could give a malicious actor with access to admin privi
9.1
CRITICAL
CVE-2025-40548
< 15.5.3
A missing validation process exists in Serv U when abused, could give a malicious actor with access to admin privileges the abilit
9.1
CRITICAL
CVE-2025-40547
< 15.5.3
A logic error vulnerability exists in Serv-U which when abused could give a malicious actor with access to admin privileges the ab
9.1
CRITICAL
CVE-2024-45712
< 15.5.1
SolarWinds Serv-U is vulnerable to a client-side cross-site scripting (XSS) vulnerability. The vulnerability can only be performed
2.6
LOW
CVE-2024-45714
<= 15.4.2.3
Application is vulnerable to Cross Site Scripting (XSS) an authenticated attacker with users’ permissions can modify a variable
4.8
MEDIUM
CVE-2024-45711
< 15.5
SolarWinds Serv-U is vulnerable to a directory traversal vulnerability where remote code execution is possible depending on priv
7.5
HIGH
CVE-2024-28995
< 15.4.2
SolarWinds Serv-U was susceptible to a directory transversal vulnerability that would allow access to read sensitive files on the
8.6
HIGH
CVE-2024-28072
< 15.4.2
A highly privileged account can overwrite arbitrary files on the system with log output. The log file path tags were not sanitized
5.7
MEDIUM
CVE-2024-28073
< 15.4.2
SolarWinds Serv-U was found to be susceptible to a Directory Traversal Remote Code Vulnerability. This vulnerability requires a hi
8.4
HIGH
CVE-2023-40053
all versions
A vulnerability has been identified within Serv-U 15.4 that allows an authenticated actor to insert content on the file share func
5.0
MEDIUM
CVE-2023-40060
all versions
A vulnerability has been identified within Serv-U 15.4 and 15.4 Hotfix 1 that, if exploited, allows an actor to bypass multi-facto
7.2
HIGH
CVE-2023-35179
all versions
A vulnerability has been identified within Serv-U 15.4 that, if exploited, allows an actor to bypass multi-factor/two-factor authe
7.2
HIGH
CVE-2023-23841
< 15.4
SolarWinds Serv-U is submitting an HTTP request when changing or updating the attributes for File Share or File request. Part o
7.5
HIGH
CVE-2022-38106
all versions
This vulnerability happens in the web client versions 15.3.0 to Serv-U 15.3.1. This vulnerability affects the directory creation f
5.4
MEDIUM
CVE-2021-35252
< 15.3.2
Common encryption key appears to be used across all deployed instances of Serv-U FTP Server. Because of this an encrypted value th
7.5
HIGH
CVE-2021-35249
< 15.3.1
This broken access control vulnerability pertains specifically to a domain admin who can access configuration & user data of other
4.3
MEDIUM
CVE-2021-35250
all versions
A researcher reported a Directory Transversal Vulnerability in Serv-U 15.3. This may allow access to files relating to the Serv-U
7.5
HIGH
CVE-2021-35247
< 15.3
Serv-U web login screen to LDAP authentication was allowing characters that were not sufficiently sanitized. SolarWinds has update
4.3
MEDIUM
CVE-2021-35245
< 15.2.4
When a user has admin rights in Serv-U Console, the user can move, create and delete any files are able to be accessed on the Serv
8.4
HIGH
CVE-2021-35242
< 15.2.5
Serv-U server responds with valid CSRFToken when the request contains only Session.
8.3
HIGH
CVE-2021-35223
< 15.2.4
The Serv-U File Server allows for events such as user login failures to be audited by executing a command. This command can be sup
8.5
HIGH
CVE-2021-35211
< 15.2.3
Microsoft discovered a remote code execution (RCE) vulnerability in the SolarWinds Serv-U product utilizing a Remote Memory Escape
9.0
CRITICAL
CVE-2021-32604
< 15.2.3
Share/IncomingWizard.htm in SolarWinds Serv-U before 15.2.3 mishandles the user-supplied SenderEmail parameter, aka "Share URL XSS
5.4
MEDIUM
CVE-2021-3154
< 15.2.2
An issue was discovered in SolarWinds Serv-U before 15.2.2. Unauthenticated attackers can retrieve cleartext passwords via macro I
7.5
HIGH
CVE-2021-25276
< 15.2.2
In SolarWinds Serv-U before 15.2.2 Hotfix 1, there is a directory containing user profile files (that include users' password hash
7.1
HIGH
CVE-2020-35482
< 15.2.2
SolarWinds Serv-U before 15.2.2 allows authenticated reflected XSS.
5.4
MEDIUM
CVE-2020-35481
< 15.2.2
SolarWinds Serv-U before 15.2.2 allows Unauthenticated Macro Injection.
9.8
CRITICAL
CVE-2020-28001
< 15.2.2
SolarWinds Serv-U before 15.2.2 allows Authenticated Stored XSS.
5.4
MEDIUM
CVE-2020-27994
< 15.2.2
SolarWinds Serv-U before 15.2.2 allows Authenticated Directory Traversal.
6.5
MEDIUM
CVE-2020-15576
< 15.2.1
SolarWinds Serv-U File Server before 15.2.1 allows information disclosure via an HTTP response.
7.5
HIGH
CVE-2020-15575
< 15.2.1
SolarWinds Serv-U File Server before 15.2.1 allows XSS as demonstrated by Tenable Scan, aka Case Number 00484194.
6.1
MEDIUM
CVE-2020-15574
< 15.2.1
SolarWinds Serv-U File Server before 15.2.1 mishandles the Same-Site cookie attribute, aka Case Number 00331893.
7.5
HIGH
CVE-2020-15573
< 15.2.1
SolarWinds Serv-U File Server before 15.2.1 has a "Cross-script vulnerability," aka Case Numbers 00041778 and 00306421.
6.1
MEDIUM
CVE-2018-10241
<= 15.1.6
A denial of service vulnerability in SolarWinds Serv-U before 15.1.6 HFv1 allows an authenticated user to crash the application (w
6.5
MEDIUM
CVE-2018-10240
<= 15.1.6
SolarWinds Serv-U MFT before 15.1.6 HFv1 assigns authenticated users a low-entropy session token that can be included in requests
7.3
HIGH
CVE-2009-4873
all versions
Stack-based buffer overflow in the HTTP server in Rhino Software Serv-U Web Client 9.0.0.5 allows remote attackers to cause a deni
CVE-2000-1033
all versions
Serv-U FTP Server allows remote attackers to bypass its anti-hammering feature by first logging on as a valid user (possibly anony
CVE-2000-0176
all versions
The default configuration of Serv-U 2.5d and earlier allows remote attackers to determine the real pathname of the server by reque
CVE-1999-0219
all versions
Buffer overflow in FTP Serv-U 2.5 allows remote authenticated users to cause a denial of service (crash) via a long (1) CWD or (2)
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin