All intelligence
// vulnerability record
cached · NVD via COSMOS syncCVE-2021-35247
NONEKEVpublish date unavailable
CVSS / 10
// description
SolarWinds Serv-U versions 15.2.5 and earlier contain an improper input validation vulnerability that allows attackers to build and send queries without sanitization.
// required action (CISA KEV)
Apply updates per vendor instructions.
added 2022-01-21 00:00 UTC