CVE-2024-28995βSolarWinds Serv-U Path Traversal Vulnerability
PUBLISHEDvulnerability record
2024-07-17 Β· last modified June 21, 2025
Metadata
Vulnerability Name
SolarWinds Serv-U Path Traversal Vulnerability
Description
SolarWinds Serv-U contains a path traversal vulnerability that allows an attacker access to read sensitive files on the host machine.
Known To Be Used in Ransomware Campaigns?
Action
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.