Lucene search
K

13 matches found

Check Point Advisories
Check Point Advisories
added 2021/12/05 12:0 a.m.8 views

SolarWinds Serv-U Remote Code Execution (CVE-2021-35211)

A remote code execution vulnerability exists in SolarWinds Serv-U. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

10CVSS5.5AI score0.9116EPSS
Exploits2
GithubExploit
GithubExploit
added 2021/09/30 1:45 a.m.35 views

Exploit for Out-of-bounds Write in Solarwinds Serv-U

PoC exploit for CVE-2021-35211, a vulnerability in Serv-U. The t...

10CVSS8.4AI score0.9116EPSS
Exploits2
Microsoft Secure
Microsoft Secure
added 2021/09/02 4:0 p.m.166 views

A deep-dive into the SolarWinds Serv-U SSH vulnerability

Several weeks ago, Microsoft detected a 0-day remote code execution exploit being used to attack the SolarWinds Serv-U FTP software in limited and targeted attacks. The Microsoft Threat Intelligence Center MSTIC attributed the attack with high confidence to DEV-0322, a group operating out of Chin...

10CVSS10AI score0.9116EPSS
Exploits2
Microsoft Malware Protection
Microsoft Malware Protection
added 2021/09/02 4:0 p.m.102 views

A deep-dive into the SolarWinds Serv-U SSH vulnerability

Several weeks ago, Microsoft detected a 0-day remote code execution exploit being used to attack the SolarWinds Serv-U FTP software in limited and targeted attacks. The Microsoft Threat Intelligence Center MSTIC attributed the attack with high confidence to DEV-0322, a group operating out of Chin...

10CVSS10AI score0.9116EPSS
Exploits2
Cvelist
Cvelist
added 2021/07/14 8:55 p.m.28 views

CVE-2021-35211 Serv-U Remote Memory Escape Vulnerability

Microsoft discovered a remote code execution RCE vulnerability in the SolarWinds Serv-U product utilizing a Remote Memory Escape Vulnerability. If exploited, a threat actor may be able to gain privileged access to the machine hosting Serv-U Only. SolarWinds Serv-U Managed File Transfer and Serv-U...

9CVSS9.9AI score0.9116EPSS
Exploits2References2
CVE
CVE
added 2021/07/14 8:55 p.m.1246 views

CVE-2021-35211

CVE-2021-35211 affects SolarWinds Serv-U Managed File Transfer and Serv-U Secure FTP for Windows prior to 15.2.3 HF2. The connected PoC exploit documents an out-of-bounds write path leading to remote code execution, with targets around Serv-U version 15.2.3 (examples cite 15.2.3.717). Exploitatio...

10CVSS9.6AI score0.9116EPSS
In wildExploits2References3Affected Software1
The Hacker News
The Hacker News
added 2021/07/14 3:41 a.m.104 views

Chinese Hackers Exploited Latest SolarWinds 0-Day in Targeted Attacks

Microsoft on Tuesday disclosed that the latest string of attacks targeting SolarWinds Serv-U managed file transfer service with a now-patched remote code execution RCE exploit is the handiwork of a Chinese threat actor dubbed "DEV-0322." The revelation comes days after the Texas-based IT monitori...

10CVSS1.9AI score0.9116EPSS
Exploits2
Microsoft Secure
Microsoft Secure
added 2021/07/13 10:30 p.m.222 views

Microsoft discovers threat actor targeting SolarWinds Serv-U software with 0-day exploit

Microsoft has detected a 0-day remote code execution exploit being used to attack SolarWinds Serv-U FTP software in limited and targeted attacks. The Microsoft Threat Intelligence Center MSTIC attributes this campaign with high confidence to DEV-0322, a group operating out of China, based on...

10CVSS9.7AI score0.9116EPSS
Exploits2
Circl
Circl
added 2021/07/13 3:58 a.m.14 views

CVE-2021-35211

creationtimestamp| type| source ---|---|--- 2021-07-13 03:58:06+00:00| exploited| https://t.me/alexmakus/4168 2021-07-13 06:01:30+00:00| exploited| https://t.me/thehackernews/1360 2021-07-13 10:04:42+00:00| exploited| https://t.me/cKure/6165 2021-07-13 11:03:35+00:00| seen|...

10CVSS7.5AI score0.9116EPSS
Exploits2References26
The Hacker News
The Hacker News
added 2021/07/13 3:58 a.m.98 views

A New Critical SolarWinds Zero-Day Vulnerability Under Active Attack

SolarWinds, the Texas-based company that became the epicenter of a massive supply chain attack late last year, has issued patches to contain a remote code execution flaw in its Serv-U managed file transfer service. The fixes, which target Serv-U Managed File Transfer and Serv-U Secure FTP product...

10CVSS1.4AI score0.9116EPSS
Exploits2
CISA
CISA
added 2021/07/13 12:0 a.m.170 views

SolarWinds Releases Advisory for Serv-U Vulnerability

SolarWinds has released an advisory addressing a vulnerability—CVE-2021-35211—affecting Serv-U Managed File Transfer and Serv-U Secure FTP. Exploitation of this vulnerability may allow a remote attacker to take control of an affected system. Note: this vulnerability does not affect any other...

10CVSS8.9AI score0.9116EPSS
In wildExploits2References3
VulnCheck KEV
VulnCheck KEV
added 2021/07/13 12:0 a.m.3 views

VulnCheck KEV: CVE-2021-35211

SolarWinds Serv-U contains an unspecified memory escape vulnerability which can allow for remote code execution...

10CVSS7.7AI score0.9116EPSS
Exploits2References1
Rapid7 Blog
Rapid7 Blog
added 2021/07/12 10:39 p.m.157 views

SolarWinds Serv-U FTP and Managed File Transfer CVE-2021-35211: What You Need to Know

On July 12, 2021, SolarWinds confirmed an actively exploited zero-day vulnerability, CVE-2021-35211, in the Serv-U FTP and Managed File Transfer component of SolarWinds15.2.3 HF1 released May 5, 2021 and all prior versions. Successful exploitation of CVE-2021-35211 could enable an attacker to gai...

0.7AI score0.9116EPSS
Exploits2
Rows per page
Query Builder