Solarwinds: >> Serv-U Ftp Server >> 15.1.7 Security Vulnerabilities
SolarWinds Serv-U FTP server before 15.2.1 allows remote command execution.
CVSS Score
9.8
EPSS Score
0.212
Published
2020-07-05
SolarWinds Serv-U FTP server before 15.2.1 mishandles the CHMOD command.
CVSS Score
9.8
EPSS Score
0.044
Published
2020-07-05
SolarWinds Serv-U FTP server before 15.2.1 does not validate an argument path.
CVSS Score
9.8
EPSS Score
0.044
Published
2020-07-05
A cross-site scripting (XSS) vulnerability exists in SolarWinds Serv-U FTP Server 15.1.7 in the email parameter, a different vulnerability than CVE-2018-19934 and CVE-2019-13182.
CVSS Score
5.4
EPSS Score
0.014
Published
2019-12-18
A CSV injection vulnerability exists in the web UI of SolarWinds Serv-U FTP Server v15.1.7.
CVSS Score
6.5
EPSS Score
0.015
Published
2019-12-16
A stored cross-site scripting (XSS) vulnerability exists in the web UI of SolarWinds Serv-U FTP Server 15.1.7.
CVSS Score
5.4
EPSS Score
0.02
Published
2019-12-16