Lucene search
K

3022 matches found

CNNVD
CNNVD
added 2026/06/09 12:0 a.m.23 views

SolarWinds Observability Self-Hosted 输入验证错误漏洞

SolarWinds Observability Self-Hosted is an observability platform developed by the American company SolarWinds. SolarWinds Observability Self-Hosted has a vulnerability related to input validation errors. This vulnerability arises when attackers can provide a specially crafted external URL,...

4.8CVSS5.3AI score0.0021EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/06/09 12:0 a.m.38 views

SolarWinds Serv-U 15.5.0 < 15.5.5

The version of SolarWinds Serv-U installed on the remote host is prior to 15.5.4 HF1. It is, therefore, affected by a vulnerability as referenced in the solarwindsserv-u1554hf1 advisory. - SolarWinds Serv-U is susceptible to specially crafted POST requests that crash the Serv-U service without...

7.5CVSS5.9AI score0.10659EPSS
Exploits2References2
The Hacker News
The Hacker News
added 2026/06/06 8:14 a.m.13 views

CISA Adds Actively Exploited SolarWinds Serv-U DoS Flaw to KEV Catalog

The U.S. Cybersecurity and Infrastructure Security Agency CISA has added a high-severity security flaw impacting SolarWinds Serv-U multi-protocol file server software to its Known Exploited Vulnerabilities KEV catalog, citing evidence of active exploitation. The vulnerability, tracked as...

7.5CVSS5.6AI score0.10659EPSS
Exploits2
RedhatCVE
RedhatCVE
added 2026/06/05 7:15 p.m.11 views

CVE-2026-28318

SolarWinds Serv-U is susceptible to specially crafted POST requests that crash the Serv-U service without authentication using Content-Encoding: deflate. Mitigation steps are provided to secure customer environments in the SolarWinds Trust Center if you are unable to deploy the update...

7.5CVSS5.5AI score0.10659EPSS
Exploits2References1
CISA
CISA
added 2026/06/05 12:0 p.m.58 views

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2026-28318link is external SolarWinds Serv-U Uncontrolled Resource Consumption Vulnerability This type of vulnerability is a frequent attack vector for malicious...

7.5CVSS5.4AI score0.10659EPSS
In wildExploits2References6
NCSC
NCSC
added 2026/06/05 8:34 a.m.16 views

The vulnerability was exploited in SolarWinds Serv-U.

SolarWinds has identified a vulnerability in Serv-U. A malicious individual could exploit this vulnerability to cause a Denial-of-Service attack by sending a specially crafted POST message. SolarWinds has released a hotfix and published mitigation measures to address this vulnerability and preven...

7.5CVSS5.5AI score0.10659EPSS
Exploits2References2
VulnCheck KEV
VulnCheck KEV
added 2026/06/05 12:0 a.m.24 views

VulnCheck KEV: CVE-2026-28318

SolarWinds Serv-U is susceptible to specially crafted POST requests that crash the Serv-U service without authentication using Content-Encoding: deflate. Mitigation steps are provided to secure customer environments in the SolarWinds Trust Center if you are unable to deploy the update...

7.5CVSS5.5AI score0.10659EPSS
In wildExploits2References3
CISA KEV Catalog
CISA KEV Catalog
added 2026/06/05 12:0 a.m.14 views

SolarWinds Serv-U Uncontrolled Resource Consumption Vulnerability

SolarWinds Serv-U contains an uncontrolled resource consumption vulnerability that allows specially crafted POST requests using the Content-Encoding: deflate header to crash the Serv-U service without authentication...

7.5CVSS5.5AI score0.10659EPSS
In wildExploits2
NVD
NVD
added 2026/06/04 3:16 p.m.15 views

CVE-2026-28318

SolarWinds Serv-U is susceptible to specially crafted POST requests that crash the Serv-U service without authentication using Content-Encoding: deflate. Mitigation steps are provided to secure customer environments in the SolarWinds Trust Center if you are unable to deploy the update...

7.5CVSS0.10659EPSS
Exploits2References3
ATTACKERKB
ATTACKERKB
added 2026/06/04 2:5 p.m.7 views

CVE-2026-28318

SolarWinds Serv-U is susceptible to specially crafted POST requests that crash the Serv-U service without authentication using Content-Encoding: deflate. Mitigation steps are provided to secure customer environments in the SolarWinds Trust Center if you are unable to deploy the update...

7.5CVSS5.8AI score0.10659EPSS
Exploits2References3
Cvelist
Cvelist
added 2026/06/04 2:5 p.m.42 views

CVE-2026-28318 SolarWinds Serv-U Unauthenticated Denial of Service Vulnerability

SolarWinds Serv-U is susceptible to specially crafted POST requests that crash the Serv-U service without authentication using Content-Encoding: deflate. Mitigation steps are provided to secure customer environments in the SolarWinds Trust Center if you are unable to deploy the update...

7.5CVSS0.10659EPSS
Exploits2References2
Vulnrichment
Vulnrichment
added 2026/06/04 2:5 p.m.11 views

CVE-2026-28318 SolarWinds Serv-U Unauthenticated Denial of Service Vulnerability

SolarWinds Serv-U is susceptible to specially crafted POST requests that crash the Serv-U service without authentication using Content-Encoding: deflate. Mitigation steps are provided to secure customer environments in the SolarWinds Trust Center if you are unable to deploy the update...

7.5CVSS5.8AI score0.10659EPSS
Exploits2References2
CVE
CVE
added 2026/06/04 2:5 p.m.160 views

CVE-2026-28318

SolarWinds Serv-U is affected by an unauthenticated Denial of Service vulnerability triggered by specially crafted POST requests with Content-Encoding: deflate. The issue can crash the Serv-U service, with exploitation observed in reports and advisories. SolarWinds has released a hotfix and mitig...

7.5CVSS5.8AI score0.10659EPSS
In wildExploits2References3Affected Software1
Circl
Circl
added 2026/06/04 11:54 a.m.10 views

CVE-2026-28318

creationtimestamp| type| source ---|---|--- 2026-06-04 11:54:48+00:00| seen| https://cyber.gc.ca/en/alerts-advisories/solarwinds-security-advisory-av26-549 2026-06-05 17:46:15+00:00| seen| https://feedsin.space/feed/CISAKevBot/items/6665471 2026-06-05 17:53:06+00:00| seen|...

7.5CVSS7.2AI score0.10659EPSS
Exploits2References51
RedhatCVE
RedhatCVE
added 2026/06/04 4:1 a.m.14 views

CVE-2026-28299

SolarWinds Web Help Desk is found to be affected by a denial-of-service vulnerability, which when exploited, could cause the Web Help Desk server to crash due to insufficient memory...

8.2CVSS5.8AI score0.00417EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/06/04 12:0 a.m.6 views

SolarWinds Serv-U 资源管理错误漏洞

SolarWinds Serv-U is an FTP File Transfer Protocol server software developed by the American company SolarWinds. SolarWinds Serv-U has a resource management vulnerability that stems from unvalidated POST requests using the Content-Encoding: deflate header, which can lead to service crashes...

7.5CVSS5.8AI score0.10659EPSS
Exploits2References2
NVD
NVD
added 2026/06/02 8:16 p.m.18 views

CVE-2026-28299

SolarWinds Web Help Desk is found to be affected by a denial-of-service vulnerability, which when exploited, could cause the Web Help Desk server to crash due to insufficient memory...

8.2CVSS0.00417EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/02 7:31 p.m.37 views

CVE-2026-28299 SolarWinds Web Help Desk Denial-of-Service Vulnerability

SolarWinds Web Help Desk is found to be affected by a denial-of-service vulnerability, which when exploited, could cause the Web Help Desk server to crash due to insufficient memory...

8.2CVSS0.00417EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/06/02 7:31 p.m.12 views

CVE-2026-28299 SolarWinds Web Help Desk Denial-of-Service Vulnerability

SolarWinds Web Help Desk is found to be affected by a denial-of-service vulnerability, which when exploited, could cause the Web Help Desk server to crash due to insufficient memory...

8.2CVSS5.8AI score0.00417EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/02 7:31 p.m.16 views

EUVD-2026-34017

SolarWinds Web Help Desk is found to be affected by a denial-of-service vulnerability, which when exploited, could cause the Web Help Desk server to crash due to insufficient memory...

8.2CVSS5.8AI score0.00417EPSS
Exploits0References2
Rows per page
Query Builder