Cybersecurity Alerts

Actively Exploited Vulnerabilities

← Back to Cybersecurity Alerts

CVE-2021-35247

SolarWinds | Serv-UAdded 2022-01-21Remediation Deadline 2022-02-04

SolarWinds Serv-U Improper Input Validation Vulnerability

SolarWinds Serv-U versions 15.2.5 and earlier contain an improper input validation vulnerability that allows attackers to build and send queries without sanitization.

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-20

References