Serv-u Ftp Server Security Vulnerabilities and Issues — Serv-u Ftp Server CVE List

Lucene search

SolarwindsServ-u Ftp Server

7 matches found

CVE•added 2019/06/17 4:15 p.m.•204 views

CVE-2019-12181

A privilege escalation vulnerability exists in SolarWinds Serv-U before 15.1.7 for Linux.

8.8CVSS8.7AI score0.51303EPSS

CVE•added 2019/03/21 4:0 p.m.•84 views

CVE-2018-15906

SolarWinds Serv-U FTP Server 15.1.6 allows remote authenticated users to execute arbitrary code by leveraging the Import feature and modifying a CSV file.

9CVSS7.1AI score0.03849EPSS

CVE•added 2019/12/16 9:15 p.m.•71 views

CVE-2019-13181

A CSV injection vulnerability exists in the web UI of SolarWinds Serv-U FTP Server v15.1.7.

6.5CVSS6.5AI score0.0149EPSS

CVE•added 2019/06/07 5:29 p.m.•69 views

CVE-2018-19999

The local management interface in SolarWinds Serv-U FTP Server 15.1.6.25 has incorrect access controls that permit local users to bypass authentication in the application and execute code in the context of the Windows SYSTEM account, leading to privilege escalation. To exploit this vulnerability, a...

7.8CVSS7.7AI score0.00055EPSS

CVE•added 2019/12/16 9:15 p.m.•66 views

CVE-2019-13182

A stored cross-site scripting (XSS) vulnerability exists in the web UI of SolarWinds Serv-U FTP Server 15.1.7.

5.4CVSS5.1AI score0.01979EPSS

CVE•added 2019/03/21 4:0 p.m.•55 views

CVE-2018-19934

SolarWinds Serv-U FTP Server 15.1.6.25 has reflected cross-site scripting (XSS) in the Web management interface via URL path and HTTP POST parameter.

4.8CVSS5AI score0.01837EPSS

CVE•added 2019/12/18 6:15 p.m.•50 views

CVE-2019-19829

A cross-site scripting (XSS) vulnerability exists in SolarWinds Serv-U FTP Server 15.1.7 in the email parameter, a different vulnerability than CVE-2018-19934 and CVE-2019-13182.

5.4CVSS4.8AI score0.01979EPSS