First published: Mon Apr 25 2022(Updated: )
A researcher reported a Directory Transversal Vulnerability in Serv-U 15.3. This may allow access to files relating to the Serv-U installation and server files. This issue has been resolved in Serv-U 15.3 Hotfix 1.
Credit: psirt@solarwinds.com psirt@solarwinds.com
Affected Software | Affected Version | How to fix |
---|---|---|
SolarWinds Serv-U | =15.3 | |
=15.3 |
SolarWinds advises to upgrade to the latest version of Web Help Desk (Serv-U 15.3 HF1)
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2021-35250 is a Directory Traversal Vulnerability in Serv-U 15.3.
CVE-2021-35250 has a severity rating of 7.5 (high).
CVE-2021-35250 may allow unauthorized access to files related to the Serv-U installation and server files.
Yes, CVE-2021-35250 has been resolved in Serv-U 15.3 Hotfix 1.
You can find more information about CVE-2021-35250 on the SolarWinds support website and the SolarWinds security advisories page.