CVE-2021-35247βSolarWinds Serv-U Improper Input Validation Vulnerability
PUBLISHEDvulnerability record
2022-01-21 Β· last modified June 21, 2025
Metadata
Vulnerability Name
SolarWinds Serv-U Improper Input Validation Vulnerability
Description
SolarWinds Serv-U versions 15.2.5 and earlier contain an improper input validation vulnerability that allows attackers to build and send queries without sanitization.
Known To Be Used in Ransomware Campaigns?
Action
Apply updates per vendor instructions.