Home > Patch Available for Serv-U Memory Escape Vulnerability

Patch Available for Serv-U Memory Escape Vulnerability

On Friday, July 9, 2021, SolarWinds issued CVE-2021-35211 related to a vulnerability in Serv-U Managed File Transfer Server and Serv-U Secured FTP. We have released a hotfix to resolve this vulnerability and encourage customers to update as soon as possible. The vulnerability exists in the latest Serv-U version 15.2.3 HF1, and all prior versions. A threat actor who successfully exploited this vulnerability could run arbitrary code with privileges. An attacker could then install programs; view, change, or delete data; or run programs on the affected system. For more information, please see our Trust Center.
SolarWinds
We’re Geekbuilt.® Developed by network and systems engineers who know what it takes to manage today's dynamic IT environments, SolarWinds has a deep connection to…
Read more

Tweets

SolarWinds's Twitter avatar
SolarWinds
@solarwinds

We are excited about the new capabilities of the new SolarWinds Partner Portal, which will be the single point of a… t.co/2742Mzk2XM

SolarWinds's Twitter avatar
SolarWinds
@solarwinds

THWACK's October mission is here! t.co/C4RqfifoKe

SolarWinds's Twitter avatar
SolarWinds
@solarwinds

@nicalpi Hi Nicolas, we apologize for the issue and can help find a solution. Can you please DM us your SWID?