First published: Wed Oct 16 2024(Updated: )
Application is vulnerable to Cross Site Scripting (XSS) an authenticated attacker with users’ permissions can modify a variable with a payload.
Credit: psirt@solarwinds.com
Affected Software | Affected Version | How to fix |
---|---|---|
SolarWinds Serv-U FTP Server | <=15.4.2.3 |
SolarWinds recommends that customers upgrade to Serv-U 15.5 as soon as it becomes available.
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2024-45714 is considered a medium severity vulnerability due to its potential for exploitation through Cross Site Scripting.
To fix CVE-2024-45714, update SolarWinds Serv-U to version 15.4.2.4 or later.
CVE-2024-45714 is a Cross Site Scripting (XSS) vulnerability that affects authenticated users.
An authenticated attacker with user permissions can exploit CVE-2024-45714.
CVE-2024-45714 affects SolarWinds Serv-U versions up to and including 15.4.2.3.