CVE-2021-35211

Summary

Microsoft discovered a remote code execution (RCE) vulnerability in the SolarWinds Serv-U product utilizing a Remote Memory Escape Vulnerability. If exploited, a threat actor may be able to gain privileged access to the machine hosting Serv-U Only. SolarWinds Serv-U Managed File Transfer and Serv-U Secure FTP for Windows before 15.2.3 HF2 are affected by this vulnerability.

Affected Software

VendorProductVersion RangeStatus
SolarWindsServ-U Managed File Transfer Server and Serv-U Secured FTPSolarWinds Serv-U < 15.2.3 HF1affected

Weaknesses

  • Memory Escape Vulnerability in Solarwinds Serv-U

Workarounds

SolarWinds advises to disconnect Serv-U Server from internet until patched.

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: active
    • Automatable: no
    • Technical Impact: total

Additional References

References