Denial of Service Vulnerability in SolarWinds Serv-U: Crash via Specially Crafted URL

Denial of Service Vulnerability in SolarWinds Serv-U: Crash via Specially Crafted URL

CVE-2018-10241 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:N/A:P

A denial of service vulnerability in SolarWinds Serv-U before 15.1.6 HFv1 allows an authenticated user to crash the application (with a NULL pointer dereference) via a specially crafted URL beginning with the /Web%20Client/ substring.

Learn more about our Web App Pen Testing.