Exposures › CVE-2021-35247

CVE-2021-35247

Severity
high · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2022-01-21
Reference
⌖ exploited in the wild shame 50/100 exploited-in-wild

SolarWinds Serv-U versions 15.2.5 and earlier contain an improper input validation vulnerability that allows attackers to build and send queries without sanitization.

Players implicated

Description

SolarWinds Serv-U versions 15.2.5 and earlier contain an improper input validation vulnerability that allows attackers to build and send queries without sanitization.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.