CVE-2019-19829

5.4MEDIUM

Key Information:

Vendor: Solarwinds
Status: Serv-u Ftp Server
Vendor: CVE Published:; 18 December 2019

Summary

A cross-site scripting (XSS) vulnerability exists in SolarWinds Serv-U FTP Server 15.1.7 in the email parameter, a different vulnerability than CVE-2018-19934 and CVE-2019-13182.

References

http://packetstormsecurity.com/files/155708/Serv-U-FTP-Se...

x_refsource_MISC

CVSS V3.1

Score:

5.4

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Changed

Timeline

Vulnerability published
Dec 18, 2019
Vulnerability Reserved
Dec 17, 2019