CVE-2021-35245

Summary

When a user has admin rights in Serv-U Console, the user can move, create and delete any files are able to be accessed on the Serv-U host machine.

Affected Software

VendorProductVersion RangeStatus
SolarWindsServ-U FTP15.2.4 Hotfix 1 and previous versions < 15.2.5affected

Weaknesses

  • CWE-284: CWE-284: Improper Access Control

ADP Enrichment

CVE Program Container

Additional References

References