Rewterz Threat Alert – Trickbot Malware- Active IOCs
July 13, 2021Rewterz Threat Alert – Agent Tesla Malware – Active IOCs
July 13, 2021Rewterz Threat Alert – Trickbot Malware- Active IOCs
July 13, 2021Rewterz Threat Alert – Agent Tesla Malware – Active IOCs
July 13, 2021Severity
High
Analysis Summary
CVE-2021-35211
SolarWinds Serv-U Managed File Transfer Server and Serv-U Secured FTP could allow a remote attacker to execute arbitrary code on the system, caused by an error when SSH is enabled in the environment. An attacker could exploit this vulnerability to install programs; view, change, or delete data; or run programs on the affected system.
Impact
- Code Execution
- Unauthorized Access
Affected Vendors
SolarWinds
Affected Products
- SolarWinds Serv-U 15.2
- SolarWinds Serv-U 15.2.2.573
- SolarWinds Serv-U 15.2.3 HF1
Remediation
Apply the patch for this vulnerability (15.2.3 hotfix (HF) 2), available from the SolarWinds Web site.
https://www.solarwinds.com/trust-center/security-advisories/cve-2021-35211