Solarwinds · Solarwinds Serv-U · CVE-2024-28995
**Name of the Vulnerable Software and Affected Versions**
SolarWinds Serv-U versions 15.4.2 and earlier
**Description**
SolarWinds Serv-U was susceptible to a directory traversal vulnerability that would allow access to read sensitive files on the host machine. Threat actors are actively exploiting this issue in the wild, with public exploits available.
**Recommendations**
SolarWinds Serv-U versions prior to 15.4.2: Update to version 15.4.2 or a later version to resolve this issue.