CVE-2021-35247 — Actively Exploited: Serv-U (SolarWinds)
SolarWinds Serv-U versions 15.2.5 and earlier contain an improper input validation vulnerability that allows attackers to build and send queries without sanitization.
| CVE ID | CVE-2021-35247 |
|---|---|
| Vendor | SolarWinds |
| Product | Serv-U |
| Vulnerability name | SolarWinds Serv-U Improper Input Validation Vulnerability |
| Date added | 2022-01-21 |
| Remediation due | 2022-02-04 |
| Known ransomware use | Unknown |
| Required action | Apply updates per vendor instructions. |
| Description | SolarWinds Serv-U versions 15.2.5 and earlier contain an improper input validation vulnerability that allows attackers to build and send queries without sanitization. |
| Source | CISA Known Exploited Vulnerabilities |
🔍 Search all exploited vulnerabilities →
$1499/mo
Try ExploitWatch →