CVE-2021-35211

Description from NVD

Microsoft discovered a remote code execution (RCE) vulnerability in the SolarWinds Serv-U product utilizing a Remote Memory Escape Vulnerability. If exploited, a threat actor may be able to gain privileged access to the machine hosting Serv-U Only. SolarWinds Serv-U Managed File Transfer and Serv-U Secure FTP for Windows before 15.2.3 HF2 are affected by this vulnerability.

Information Acquisition Date:2021-11-16T14:54Z
CVSS 2.0: 10.0 HIGH CVSS 3.x: 10.0 CRITICAL

▼ CVSS3 Vec CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

▼ CVSS2 Vec AV:N/AC:L/Au:N/C:C/I:C/A:C

NVD References

 https://www.microsoft.com/security/blog/2021/07/13/microsoft-discovers-threat-actor-targeting-solarwinds-serv-u-software-with-0-day-exploit
     source:MISC
     tags:Patch    Vendor Advisory    
 https://www.solarwinds.com/trust-center/security-advisories/cve-2021-35211
     source:MISC
     tags:Patch    Vendor Advisory    

This vulnerability may involve a PoC.

Refer to Information on External Sites

CVE InfomationExploits or more Infomation
mitreEXPLOIT DATABASE
NVD0day.today
vulmon.comgithub
CVE DetailsTwitter
JVN ENG JPN
Reconshell

Software Tag:

List of frequently cited URLs

URLNum of Times Referred to
https://alerts.vulmon.com/?utm_source=twitter&utm_medium=so...234
http://twinybots.ch59
http://cyberiqs.com/latestnews38
https://lists.astaro.com/ASGV9-IPS-rules.html28
https://sdx.io/APJD7
https://blog.fox-it.com/2021/11/08/ta505-exploits-solarwind...6
https://twitter.com/campuscodi/status/14146170891056128025
https://www.rapid7.com/blog/post/2021/07/12/solarwinds-serv...4
https://www.microsoft.com/security/blog/2021/07/13/microsof...4
https://yichenchai.github.io/blog/serv-u-part-14
https://www.helpnetsecurity.com/2021/07/13/solarwinds-patch...4
https://bit.ly/2VS1QtH3
https://bfx.social/3rHoqB83
https://bishopfox.com/blog/exploit-for-cve-2021-352113
https://therecord.media/microsoft-discovers-a-solarwinds-ze...3
https://securityaffairs.co/wordpress/124389/hacking/clop-ga...3
https://www.solarwinds.com/trust-center/security-advisories...3
https://research.nccgroup.com/2021/11/08/ta505-exploits-sol...3

Information from Twitter

User URL Info Source Date
bishopfox https://bfx.social/3rHoqB8 Source bishopfox        1506717424497872912 2022/03/24
CyberIQs_ http://cyberiqs.com/latestnews Source CyberIQs_        1512457822470082562 2022/04/09
bishopfox https://bfx.social/3rHoqB8 Source bishopfox        1523731240301518851 2022/05/10

List of frequently cited URLs

URLNum of Times Referred to
alerts.vulmon.com234
twinybots.ch59
cyberiqs.com38
lists.astaro.com28
sdx.io7
blog.fox-it.com6
twitter.com5
www.rapid7.com4
www.microsoft.com4
yichenchai.github.io4
www.helpnetsecurity.com4
bit.ly3
bfx.social3
bishopfox.com3
therecord.media3
securityaffairs.co3
www.solarwinds.com3
research.nccgroup.com3

Information from Twitter

User URL Info Source
bishopfox bfx.social Show Tweet
CyberIQs_ cyberiqs.com Show Tweet
bishopfox bfx.social Show Tweet
GitHub Search Results: Up to 10
NameURL
NattiSamson/Serv-U-CVE-2021-35211 https://github.com/NattiSamson/Serv-U-CVE-2021-35211
BishopFox/CVE-2021-35211 https://github.com/BishopFox/CVE-2021-35211
GitHub Search Results: Up to 10
NameURL
NattiSamson/Serv-U-CVE-2021-35211 github.com
BishopFox/CVE-2021-35211 github.com
2022/05/10 Score : 0
Added Har-sia Database : 2021/07/13
Last Modified : 2022/05/10
Highest Scored Date : 2021/07/13
Highest Score : 70