Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-23841

SolarWinds Serv-U is submitting an HTTP request when changing or updating the attributes for File Share or File request.  Part of the URL of the request discloses sensitive data. 

Published

2023-06-15T22:15:09.227

Last Modified

2024-11-21T07:46:56.070

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

Weaknesses
  • Type: Secondary
    CWE-319
  • Type: Primary
    CWE-319
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application solarwinds serv-u < 15.4 Yes
References