all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Threat actors are actively exploiting SolarWinds Serv-U bug CVE-2024-28995

Add to bookmarks
June 23, 2024, 8:23 a.m. | Pierluigi Paganini

Security Affairs securityaffairs.co

Threat actors are actively exploiting a recently discovered vulnerability in SolarWinds Serv-U software using publicly available proof-of-concept (PoC) code. Threat actors are actively exploiting a recently discovered vulnerability, tracked as CVE-2024-28995, in SolarWinds Serv-U software. The vulnerability CVE-2024-28995 is a high-severity directory transversal issue that allows attackers to read sensitive files on the host machine. […]

attackers breaking news bug code concept cve cve-2024 cve-2024-28995 directory exploiting files hacking high information security news issue it information security pierluigi paganini poc proof proof-of-concept security sensitive serv-u severity software solarwinds solarwinds serv-u threat threat actors using vulnerability

Visit resource

More from securityaffairs.co / Security Affairs

Infosys McCamish Systems data breach impacted over 6 million people 12 hours ago | securityaffairs.co
attack breach breaking news business +30
A cyberattack shut down the University Hospital Centre Zagreb in Croatia 1 day, 10 hours ago | securityaffairs.co
attack breaking news croatia cyber +14
US announces a $10M reward for Russia’s GRU hacker behind attacks on Ukraine 2 days, 2 hours ago | securityaffairs.co
attacks breaking news charges cyber warfare +23
LockBit group wrongly claimed the hack of the Federal Reserve 2 days, 12 hours ago | securityaffairs.co
bank breaking news cyber crime cybercrime +22
CISA adds GeoSolutionsGroup JAI-EXT, Linux Kernel, and Roundcube Webmail bugs to its Known Exploited Vulnerabilities … 2 days, 17 hours ago | securityaffairs.co
agency breaking news bugs catalog +22
New P2Pinfect version delivers miners and ransomware on Redis servers 3 days, 2 hours ago | securityaffairs.co
alto attacks breaking news cado security +29
New MOVEit Transfer critical bug is actively exploited 3 days, 12 hours ago | securityaffairs.co
actively exploited authentication authentication bypass breaking news +29
New Caesar Cipher Skimmer targets popular CMS used by e-stores 3 days, 21 hours ago | securityaffairs.co
breaking news caesar caesar cipher skimmer called +21
Mirai-like botnet is exploiting recently disclosed Zyxel NAS flaw 4 days, 15 hours ago | securityaffairs.co
botnet breaking news critical critical vulnerability +27

Jobs in InfoSec / Cybersecurity

Find Talent

Senior Data Governance Consultant (Remote in US)

@ Resultant | Indianapolis, IN, United States
View on infosec-jobs.com

Senior Data & AI Threat Detection Researcher (Cortex)

@ Palo Alto Networks | Tel Aviv-Yafo, Israel
View on infosec-jobs.com

Senior Systems Engineer - AWS

@ CACI International Inc | 999 REMOTE
View on infosec-jobs.com

Managing Consultant / Consulting Director / Engagement Lead in Cybersecurity Consulting

@ Marsh McLennan | Toronto - Bremner
View on infosec-jobs.com

Specialist , Fraud Investigation and SecOps

@ Concentrix | Bulgaria - Work at Home
View on infosec-jobs.com

Data Engineer, Mid

@ Booz Allen Hamilton | USA, CA, San Diego (1615 Murray Canyon Rd)
View on infosec-jobs.com