Privilege Escalation Vulnerability in SolarWinds Serv-U for Linux
CVE-2019-12181
Key Information:
- Vendor
- Solarwinds
- Vendor
- CVE Published:
- 17 June 2019
Badges
Summary
A privilege escalation vulnerability has been identified in SolarWinds Serv-U for Linux, allowing an attacker to exploit certain weaknesses in the software prior to version 15.1.7. This flaw could potentially enable unauthorized users to gain elevated access to system resources, posing risks to the integrity and confidentiality of sensitive data. Users are advised to upgrade to the patched version to mitigate potential threats. Further details can be found in the relevant support documents and security advisories.
Exploit Proof of Concept (PoC)
PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.
References
EPSS Score
86% chance of being exploited in the next 30 days.
CVSS V3.1
Timeline
Vulnerability published
- 🟡
Public PoC available
- 👾
Exploit known to exist
Vulnerability Reserved