THREAT OPS › CVEs › CVE-2026-28318
CVE-2026-28318 — SolarWinds Serv-U Uncontrolled Resource Consumption Vulnerability
SolarWinds Serv-U contains an uncontrolled resource consumption vulnerability that allows specially crafted POST requests using the Content-Encoding: deflate header to crash the Serv-U service without authentication.
Vulnerability details
- Affected productsServ-U
- KEV remediation due2026-06-19