CVEDB API

SolarWinds Serv-U FTP server before 15.2.1 does not validate an argument path.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.044

EPSS Ranking 88.5%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

Products affected by CVE-2020-15543

Solarwinds » Serv-U Ftp Server » Version: 15.0

cpe:2.3:a:solarwinds:serv-u_ftp_server:15.0
Solarwinds » Serv-U Ftp Server » Version: 15.1

cpe:2.3:a:solarwinds:serv-u_ftp_server:15.1
Solarwinds » Serv-U Ftp Server » Version: 15.1.1

cpe:2.3:a:solarwinds:serv-u_ftp_server:15.1.1
Solarwinds » Serv-U Ftp Server » Version: 15.1.2

cpe:2.3:a:solarwinds:serv-u_ftp_server:15.1.2
Solarwinds » Serv-U Ftp Server » Version: 15.1.3

cpe:2.3:a:solarwinds:serv-u_ftp_server:15.1.3
Solarwinds » Serv-U Ftp Server » Version: 15.1.4

cpe:2.3:a:solarwinds:serv-u_ftp_server:15.1.4
Solarwinds » Serv-U Ftp Server » Version: 15.1.5

cpe:2.3:a:solarwinds:serv-u_ftp_server:15.1.5
Solarwinds » Serv-U Ftp Server » Version: 15.1.6

cpe:2.3:a:solarwinds:serv-u_ftp_server:15.1.6
Solarwinds » Serv-U Ftp Server » Version: 15.1.6.25

cpe:2.3:a:solarwinds:serv-u_ftp_server:15.1.6.25
Solarwinds » Serv-U Ftp Server » Version: 15.1.7

cpe:2.3:a:solarwinds:serv-u_ftp_server:15.1.7
Solarwinds » Serv-U Ftp Server » Version: 15.2

cpe:2.3:a:solarwinds:serv-u_ftp_server:15.2