Описание
A vulnerability has been identified within Serv-U 15.4 that allows an authenticated actor to insert content on the file share function feature of Serv-U, which could be used maliciously.
Ссылки
- Release Notes
- Vendor Advisory
- Release Notes
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:solarwinds:serv-u:15.4.0:-:*:*:*:*:*:*
cpe:2.3:a:solarwinds:serv-u:15.4.0:hotfix1:*:*:*:*:*:*
cpe:2.3:a:solarwinds:serv-u:15.4.0:hotfix2:*:*:*:*:*:*
EPSS
Процентиль: 18%
0.00056
Низкий
5 Medium
CVSS3
Дефекты
CWE-20
NVD-CWE-noinfo
Связанные уязвимости
CVSS3: 4.6
github
около 2 лет назад
A vulnerability has been identified within Serv-U 15.4 that allows an authenticated actor to insert content on the file share function feature of Serv-U, which could be used maliciously.
EPSS
Процентиль: 18%
0.00056
Низкий
5 Medium
CVSS3
Дефекты
CWE-20
NVD-CWE-noinfo