Serv-u

This hub aggregates every CVE we track for Serv-u, a product in the enterprise software space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Serv-u.

• CVE-2026-28318SolarWinds Serv-U Unauthenticated Denial of Service VulnerabilityKEV7.5Jun 4, 2026
• CVE-2025-40541SolarWinds Serv-U Insecure Direct Object Reference (IDOR) Remote Code Execution Vulnerability9.1Feb 24, 2026
• CVE-2025-40540SolarWinds Serv-U Type Confusion Remote Code Execution Vulnerability9.1Feb 24, 2026
• CVE-2025-40539SolarWinds Serv-U Type Confusion Remote Code Execution Vulnerability9.1Feb 24, 2026
• CVE-2025-40538SolarWinds Serv-U Broken Access Control Remote Code Execution Vulnerability9.1Feb 24, 2026
• CVE-2025-40549SolarWinds Serv-U Path Restriction Bypass Vulnerability9.1Nov 18, 2025
• CVE-2025-40548SolarWinds Serv-U Broken Access Control - Remote Code Execution Vulnerability9.1Nov 18, 2025
• CVE-2025-40547SolarWinds Serv-U Logic Abuse - Remote Code Execution Vulnerability9.1Nov 18, 2025
• CVE-2024-45712SolarWinds Serv-U Client-Side Cross-Site Scripting Vulnerability2.6Apr 15, 2025
• CVE-2024-45711SolarWinds Serv-U FTP Service Directory Traversal Remote Code Execution Vulnerability7.5Oct 16, 2024
• CVE-2024-45714SolarWinds Serv-U Stored XSS Vulnerability4.8Oct 16, 2024
• CVE-2024-28995SolarWinds Serv-U L Directory Transversal VulnerabilityKEV8.6Jun 6, 2024
• CVE-2024-28072Arbitrary File Overwrite Vulnerability5.7May 3, 2024
• CVE-2024-28073SolarWinds Serv-U Directory Traversal Remote Code Execution Vulnerability 8.4Apr 17, 2024
• CVE-2023-40053HTML injection Vulnerability in Serv-U 15.45.0Dec 6, 2023