Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.SOLARWINDS_SERV-U_15_3_HF1.NASL
HistoryApr 18, 2023 - 12:00 a.m.

SolarWinds Serv-U 15.3 HF1

2023-04-1800:00:00
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
9
solarwinds serv-u
15.3 hf1
vulnerability
directory transversal
cve-2021-35250
nessus

0.049 Low

EPSS

Percentile

92.8%

JSON

The version of SolarWinds Serv-U installed on the remote host is prior to 15.3 HF1. It is, therefore, affected by a vulnerability as referenced in the serv-u_15_3_hf1 advisory.

  • An external security researcher reported a Directory Transversal Vulnerability in Serv-U 15.3. If exploited, this vulnerability could allow access to files relating to the Serv-U installation and server files. It is important to note no exploits of this vulnerability have been reported in the wild.
    (CVE-2021-35250)

Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(174448);
  script_version("1.1");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/04/19");

  script_cve_id("CVE-2021-35250");

  script_name(english:"SolarWinds Serv-U 15.3 HF1");

  script_set_attribute(attribute:"synopsis", value:
"");
  script_set_attribute(attribute:"description", value:
"The version of SolarWinds Serv-U installed on the remote host is prior to 15.3 HF1. It is, therefore, affected by a
vulnerability as referenced in the serv-u_15_3_hf1 advisory.

  - An external security researcher reported a Directory Transversal Vulnerability in Serv-U 15.3. If
    exploited, this vulnerability could allow access to files relating to the Serv-U installation and server
    files. It is important to note no exploits of this vulnerability have been reported in the wild.
    (CVE-2021-35250)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
  # https://www.solarwinds.com/trust-center/security-advisories/cve-2021-35250
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?5c924ecb");
  script_set_attribute(attribute:"solution", value:
"Upgrade to Serv-U version 15.3 HF1 or later.");
  script_set_attribute(attribute:"agent", value:"all");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2021-35250");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2022/03/02");
  script_set_attribute(attribute:"patch_publication_date", value:"2022/03/02");
  script_set_attribute(attribute:"plugin_publication_date", value:"2023/04/18");

  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:solarwinds:serv-u");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:solarwinds:serv-u_file_server");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:serv-u:serv-u");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_set_attribute(attribute:"thorough_tests", value:"true");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"FTP");

  script_copyright(english:"This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("servu_version.nasl");
  script_require_keys("installed_sw/Serv-U");

  exit(0);
}

include('vcf.inc');
include('vcf_extras.inc');
include('ftp_func.inc');

var port = get_ftp_port(default:21);

var app_info = vcf::get_app_info(app:'Serv-U', port:port);
if (!empty_or_null(app_info.Hotfix))
  audit(AUDIT_INST_VER_NOT_VULN, app_info.app);

var constraints = [
  { 'fixed_version' : '15.3 HF1', 'equal' : '15.3' }
];
vcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_WARNING);
VendorProductVersionCPE
solarwindsserv-ucpe:/a:solarwinds:serv-u
solarwindsserv-u_file_servercpe:/a:solarwinds:serv-u_file_server
serv-userv-ucpe:/a:serv-u:serv-u

Related

cvelist 1
prion 1
nvd 1
cve 1
nuclei 1
cvelist
cvelist
CVE-2021-35250 Directory Transversal Vulnerability in Serv-U 15.3
2022-04-25 00:00:00
prion
prion
Directory traversal
2022-04-25 20:15:00
nvd
nvd
CVE-2021-35250
2022-04-25 20:15:41
cve
cve
CVE-2021-35250
2022-04-25 20:15:41
nuclei
nuclei
SolarWinds Serv-U 15.3 - Directory Traversal
2023-04-15 12:38:04

0.049 Low

EPSS

Percentile

92.8%

JSON
Related for SOLARWINDS_SERV-U_15_3_HF1.NASL
cvelist1prion1nvd1cve1nuclei1