exploitDog

CVE-2021-35250

Опубликовано: 25 апр. 2022

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Высокий

Описание

A researcher reported a Directory Transversal Vulnerability in Serv-U 15.3. This may allow access to files relating to the Serv-U installation and server files. This issue has been resolved in Serv-U 15.3 Hotfix 1.

Ссылки

https://support.solarwinds.com/SuccessCenter/s/article/Serv-U-15-3-HotFix-1?language=en_US
Vendor Advisory
https://www.solarwinds.com/trust-center/security-advisories/cve-2021-35250
Vendor Advisory
https://support.solarwinds.com/SuccessCenter/s/article/Serv-U-15-3-HotFix-1?language=en_US
Vendor Advisory
https://www.solarwinds.com/trust-center/security-advisories/cve-2021-35250
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:solarwinds:serv-u:15.3:-:*:*:*:*:*:*

EPSS

Процентиль: 100%

0.89975

Высокий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-22

CWE-22

Связанные уязвимости

GHSA-7pjc-f7p6-mpfc

CVSS3: 7.5

github

почти 4 года назад

A researcher reported a Directory Transversal Vulnerability in Serv-U 15.3. This may allow access to files relating to the Serv-U installation and server files. This issue has been resolved in Serv-U 15.3 Hotfix 1.

EPSS

Процентиль: 100%

0.89975

Высокий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-22

CWE-22