Exposures › CVE-2021-35247
CVE-2021-35247
Severity
high · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2022-01-21
Reference
⌖ exploited in the wild
shame 50/100
exploited-in-wild
SolarWinds Serv-U versions 15.2.5 and earlier contain an improper input validation vulnerability that allows attackers to build and send queries without sanitization.
Players implicated
Description
SolarWinds Serv-U versions 15.2.5 and earlier contain an improper input validation vulnerability that allows attackers to build and send queries without sanitization.
Affected FedRAMP products 0 in the catalog
No correlated FedRAMP products.