PT-2021-16450 · Solarwinds · Serv-U
Published
2021-05-05
·
Updated
2021-05-11
·
CVE-2021-25179
CVSS v3.1
6.1
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions:
SolarWinds Serv-U versions prior to 15.2
Description:
The issue is related to Cross Site Scripting (XSS) that can be triggered via the HTTP Host header.
Recommendations:
For versions prior to 15.2, update to version 15.2 or later to resolve the issue.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Serv-U