SolarWinds Serv-U File Server before 15.2.1 has a "Cross-script vulnerability," aka Case Numbers 00041778 and 00306421.
6.1CVSS
6.3AI Score
0.001EPSS
SolarWinds Serv-U File Server before 15.2.1 mishandles the Same-Site cookie attribute, aka Case Number 00331893.
7.5CVSS
7.5AI Score
0.002EPSS
SolarWinds Serv-U File Server before 15.2.1 allows XSS as demonstrated by Tenable Scan, aka Case Number 00484194.
6.1CVSS
6AI Score
0.001EPSS
SolarWinds Serv-U File Server before 15.2.1 allows information disclosure via an HTTP response.
7.5CVSS
7.2AI Score
0.002EPSS