RSS   Vulnerabilities for 'Serv-u ftp server'   RSS

2020-07-05
 
CVE-2020-15541

CWE-94
 

 
SolarWinds Serv-U FTP server before 15.2.1 allows remote command execution.

 
2019-12-18
 
CVE-2019-19829

CWE-79
 

 
A cross-site scripting (XSS) vulnerability exists in SolarWinds Serv-U FTP Server 15.1.7 in the email parameter, a different vulnerability than CVE-2018-19934 and CVE-2019-13182.

 
2019-12-16
 
CVE-2019-13182

CWE-79
 

 
A stored cross-site scripting (XSS) vulnerability exists in the web UI of SolarWinds Serv-U FTP Server 15.1.7.

 
 
CVE-2019-13181

CWE-74
 

 
A CSV injection vulnerability exists in the web UI of SolarWinds Serv-U FTP Server v15.1.7.

 
2019-06-07
 
CVE-2018-19999

CWE-287
 

 
The local management interface in SolarWinds Serv-U FTP Server 15.1.6.25 has incorrect access controls that permit local users to bypass authentication in the application and execute code in the context of the Windows SYSTEM account, leading to privilege escalation. To exploit this vulnerability, an attacker must have local access the the host running Serv-U, and a Serv-U administrator have an active management console session.

 
2019-03-21
 
CVE-2018-19934

CWE-79
 

 
SolarWinds Serv-U FTP Server 15.1.6.25 has reflected cross-site scripting (XSS) in the Web management interface via URL path and HTTP POST parameter.

 
 
CVE-2018-15906

CWE-noinfo
 

 
SolarWinds Serv-U FTP Server 15.1.6 allows remote authenticated users to execute arbitrary code by leveraging the Import feature and modifying a CSV file.

 

 >>> Vendor: Solarwinds 46 Products
Serv-u
Tftp server
Ftp voyager
Patch manager
Help desk
Kiwi cattools
Web help desk
Orion network performance monitor
Virtualization manager
Ip address manager web interface
Network configuration manager
Log and event manager
Server and application monitor
Orion ip address manager
Orion netflow traffic analyzer
Orion network configuration manager
Orion server and application manager
Orion user device tracker
Orion voip & network quality manager
Orion web performance monitor
Firewall security manager
Storage manager
N-able n-central
Storage resource monitor
Log & event manager
Network performance monitor
Sftp/scp server
Orion platform
Serv-u ftp server
Damewire mini remote control
Database performance analyzer
Dameware mini remote control firmware
Dameware remote support
N-central
Netpath
Serv-u managed file transfer
Dameware
Managed service provider patch management engine
Advanced monitoring agent
Webhelpdesk
Orion virtual infrastructure monitor
Serv-u file server
Dameware mini remote control
Pingdom
Kiwi syslog server
Access rights manager


Copyright 2024, cxsecurity.com

 

Back to Top