COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2024-28995

CVE-2024-28995

Severity
high · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2024-07-17
Reference
https://nvd.nist.gov/vuln/detail/CVE-2024-28995
⌖ exploited in the wild shame 50/100 exploited-in-wild

SolarWinds Serv-U contains a path traversal vulnerability that allows an attacker access to read sensitive files on the host machine.

Players implicated

SolarWinds · vendorServ-U · product

Description

SolarWinds Serv-U contains a path traversal vulnerability that allows an attacker access to read sensitive files on the host machine.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.