THREATOPS
THREAT OPSCVEs › CVE-2021-35247

CVE-2021-35247 — SolarWinds Serv-U Improper Input Validation Vulnerability

CISA KEVExploited: confirmedSolarWinds

SolarWinds Serv-U versions 15.2.5 and earlier contain an improper input validation vulnerability that allows attackers to build and send queries without sanitization.

Vulnerability details