CPE-B463A869-7A25-4EED-B468-5566352341F7 Détail

CPE Details

SolarWinds Serv-U 15.4.0

Vendor

solarwinds

Product

serv-u

Version

15.4.0

Created

2023-06-30
09h49 +00:00

Modifié

2023-08-17
12h33 +00:00

Liens officiels

CPE NVD

Alerte pour un CPE

Restez informé de toutes modifications pour un CPE spécifique.

Gestion des notifications

Liste des Notifications

Alerte pour un CPE

Restez informé de toutes modifications pour un CPE spécifique.

Paramètres

Vous pouvez spécifier un titre qui sera récupéré dans les alertes qui seront envoyées.

CPE ID

Planifications

Mois

Prochaine exécution calculée

Jour

Jour de la semaine

Heure

Minute

Date de création

Dernière exécution

Prochaine exécution

Fonctionnalité nécessitant une connexion

Cette fonctionnalité qui vous permet de recevoir des alertes, n'est active que lorsque vous êtes connecté à votre compte.

CPE Name: cpe:2.3:a:solarwinds:serv-u:15.4.0:-::::::

Informations

Vendor

solarwinds

Product

serv-u

Version

15.4.0

Update

Related CVE

Open and find in CVE List

CVE ID	Publié	Description	Score	Gravité
CVE-2024-45711	2024-10-16 07h27 +00:00	SolarWinds Serv-U is vulnerable to a directory traversal vulnerability where remote code execution is possible depending on privileges given to the authenticated user. This issue requires a user to be authenticated and this is present when software environment variables are abused. Authentication is required for this vulnerability	8.8	Haute
CVE-2024-45714	2024-10-16 07h26 +00:00	Application is vulnerable to Cross Site Scripting (XSS) an authenticated attacker with users’ permissions can modify a variable with a payload.	4.8	Moyen
CVE-2024-28995	2024-06-06 09h01 +00:00	SolarWinds Serv-U was susceptible to a directory transversal vulnerability that would allow access to read sensitive files on the host machine.	8.6	Haute
CVE-2024-28072	2024-05-03 07h50 +00:00	A highly privileged account can overwrite arbitrary files on the system with log output. The log file path tags were not sanitized properly.	5.7	Moyen
CVE-2024-28073	2024-04-17 16h58 +00:00	SolarWinds Serv-U was found to be susceptible to a Directory Traversal Remote Code Vulnerability. This vulnerability requires a highly privileged account to be exploited.	8.4	Haute
CVE-2023-40053	2023-12-06 03h23 +00:00	A vulnerability has been identified within Serv-U 15.4 that allows an authenticated actor to insert content on the file share function feature of Serv-U, which could be used maliciously.	5	Moyen
CVE-2023-40060	2023-09-07 15h57 +00:00	A vulnerability has been identified within Serv-U 15.4 and 15.4 Hotfix 1 that, if exploited, allows an actor to bypass multi-factor/two-factor authentication. The actor must have administrator-level access to Serv-U to perform this action. 15.4. SolarWinds found that the issue was not completely fixed in 15.4 Hotfix 1.	7.2	Haute
CVE-2023-35179	2023-08-10 23h14 +00:00	A vulnerability has been identified within Serv-U 15.4 that, if exploited, allows an actor to bypass multi-factor/two-factor authentication. The actor must have administrator-level access to Serv-U to perform this action.	7.2	Haute

SolarWinds Serv-U 15.4.0

CPE Details

CPE Name: cpe:2.3:a:solarwinds:serv-u:15.4.0:-:*:*:*:*:*:*

Informations

Vendor

Product

Version

Update

Related CVE

CPE Name: cpe:2.3:a:solarwinds:serv-u:15.4.0:-::::::