CRITICAL🚩 CISA KEV⚡ EXPLOIT🇵🇱 Wersja polska

CVE-2021-35211

CVSS 9.0v3.1pub. 2021-07-14upd. 2025-10-27

Microsoft discovered a remote code execution (RCE) vulnerability in the SolarWinds Serv-U product utilizing a Remote Memory Escape Vulnerability. If exploited, a threat actor may be able to gain privileged access to the machine hosting Serv-U Only. SolarWinds Serv-U Managed File Transfer and Serv-U Secure FTP for Windows before 15.2.3 HF2 are affected by this vulnerability.

CVSS Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
  • Solarwinds Serv U

    APP
    Solarwinds
    15.2.3< 15.2.3

CISA KEV — detailsi

Vendori
SolarWinds
Producti
Serv-U
Added to KEVi
November 3, 2021
Remediation deadline (US Federal)i
November 17, 2021(overdue)
Ransomwarei
Active ransomware campaigns exploit this vulnerability
Required action (CISA)i

Apply updates per vendor instructions.

CISA descriptioni

SolarWinds Serv-U contains an unspecified memory escape vulnerability which can allow for remote code execution.

🔴
IMMEDIATE ACTION
Actively exploited in the wild (CISA KEV). Patch immediately.
☠️WYKORZYSTYWANE W RANSOMWARECISA DEADLINE: 17 listopada 2021
Tags
RCE
CWE
References

Related vulnerabilities

CVE-2025-40540CRITICAL9.1PL ✓ten sam produkt

Type confusion w SolarWinds Serv-U umożliwiający wykonanie kodu

CVE-2025-40541CRITICAL9.1PL ✓ten sam produkt

IDOR w SolarWinds Serv-U umożliwia wykonanie kodu jako uprzywilejowane konto

CVE-2025-40539CRITICAL9.1PL ✓ten sam produkt

Type confusion w SolarWinds Serv-U umożliwia RCE na uprzywilejowanym koncie

CVE-2025-40538CRITICAL9.1PL ✓ten sam produkt

SolarWinds Serv-U: broken access control umożliwiający RCE jako administrator systemu

CVE-2025-40547CRITICAL9.1PL ✓ten sam produkt

SolarWinds Serv-U — błąd logiczny umożliwiający wykonanie kodu przez admina