Lucene search

SolarWindsCVELIST:CVE-2021-35223

HistoryAug 31, 2021 - 4:00 p.m.

CVE-2021-35223 Execute Command Function Allows Remote Code Execution (RCE)Vulnerability

2021-08-3116:00:18

CWE-20

SolarWinds

www.cve.org

cve-2021-35223

execute command

remote code execution

audit events

user login

string variables

CVSS3

8.5

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

AI Score

9.2

Confidence

High

EPSS

0.006

Percentile

77.6%

JSON

The Serv-U File Server allows for events such as user login failures to be audited by executing a command. This command can be supplied with parameters that can take the form of user string variables, allowing remote code execution.

CNA Affected

[
  {
    "product": "Serv-U",
    "vendor": "SolarWinds",
    "versions": [
      {
        "lessThanOrEqual": "15.2.4 ",
        "status": "affected",
        "version": "15.2.3 and previous versions",
        "versionType": "custom"
      }
    ]
  }
]

References

documentation.solarwinds.com/en/success_center/servu/content/release_notes/servu_15-2-4_release_notes.htm

support.solarwinds.com/SuccessCenter/s/article/Execute-Command-Function-Allows-Remote-Code-Execution-RCE-Vulnerability-CVE-2021-35223?language=en_US

www.solarwinds.com/trust-center/security-advisories/cve-2021-35223

CVSS3

8.5

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

AI Score

9.2

Confidence

High

EPSS

0.006

Percentile

77.6%

JSON

Related for CVELIST:CVE-2021-35223