CVE-2024-28995: SolarWinds Serv-U Path/Directory Traversal Vulnerability Exploited in the Wild | allinfosecnews.com

June 21, 2024, 5:17 p.m. | Satnam Narang

Cyber Exposure Alerts www.tenable.com

Following the publication of proof-of-concept exploit details for a high-severity flaw in SolarWinds Serv-U, researchers have observed both automated and manual in-the-wild exploitation attempts; patching is strongly advised.

Background

On June 5, SolarWinds published an advisory for a vulnerability in its Serv-U file transfer protocol (FTP) and managed file transfer (MFT) solutions:

CVEDescriptionCVSSv3CVE-2024-28995SolarWinds Serv-U Path/Directory Traversal Vulnerability8.6

Analysis

CVE-2024-28995 is a path or directory traversal vulnerability in SolarWinds Serv-U. An unauthenticated, remote attacker could exploit this vulnerability …

advisory automated concept cve cve-2024 cve-2024-28995 directory directory traversal directory traversal vulnerability exploit exploitation exploitation attempts exploited file file transfer flaw ftp high in the wild june managed managed file transfer mft patching path proof proof-of-concept protocol researchers serv-u severity solarwinds solarwinds serv-u solutions transfer vulnerability vulnerability exploited

More from www.tenable.com / Cyber Exposure Alerts

CVE-2024-5806: Progress MOVEit Transfer Authentication Bypass Vulnerability 3 days, 16 hours ago | www.tenable.com

advisory authentication authentication bypass bypass +27

CVE-2024-28995: SolarWinds Serv-U Path/Directory Traversal Vulnerability Exploited in the Wild 1 week ago | www.tenable.com

advisory automated concept cve +33

Microsoft’s June 2024 Patch Tuesday Addresses 49 CVEs 2 weeks, 3 days ago | www.tenable.com

CVE-2024-4577: Proof of Concept Available for PHP-CGI Argument Injection Vulnerability 3 weeks ago | www.tenable.com

Rockwell Automation: Disconnect OT Devices with Public-Facing Internet Access, Patch or Mitigate Logix, FactoryTalk CVEs 3 weeks, 2 days ago | www.tenable.com

access advisory automation best practices +22

CVE-2024-4358, CVE-2024-1800: Exploit Code Available for Critical Exploit Chain in Progress Telerik Report Server 3 weeks, 4 days ago | www.tenable.com

These Services Shall Not Pass: Abusing Service Tags to Bypass Azure Firewall Rules (Customer Action … 3 weeks, 4 days ago | www.tenable.com

abusing action attention azure +16

CVE-2024-24919: Check Point Security Gateway Information Disclosure Zero-Day Exploited in the Wild 4 weeks, 2 days ago | www.tenable.com

Microsoft’s May 2024 Patch Tuesday Addresses 59 CVEs (CVE-2024-30051, CVE-2024-30040) 1 month, 2 weeks ago | www.tenable.com

addresses critical critical vulnerability cve +15

Watch Officer and Operations Officer

@ Interclypse | Arlington, VA, US

View on infosec-jobs.com

Sales Development Representative

@ Devo | United States

View on infosec-jobs.com

Principal Software Engineer

@ Oracle | Seattle, WA, United States

View on infosec-jobs.com

Engineering Manager, Cloud - TDIR (Remote)

@ CrowdStrike | USA CA Remote

View on infosec-jobs.com

Linux System Administrator II

@ Peraton | Fort Meade, MD, United States

View on infosec-jobs.com

Linux System Administrator

@ Peraton | Fort Meade, MD, United States

View on infosec-jobs.com