CyberRota
← Ana sayfaya dön

CVE-2026-28318

HIGH · CVSS 7.5 EPSS %10.66 CISA KEV · Aktif istismar

Kaynak: NVD + CISA KEV + EPSS · Yayınlanma: 2026-06-04T15:16:50.407 · Çekilme zamanı: 2026-06-30T12:09:57.846671+00:00

CyberRota Yorumu

Detaylı analiz gerekiyor.

CISA KEV Bilgisi

Durum: Bu CVE, sahada aktif istismar edilmiş açıklar katalogunda yer alıyor.

Ransomware Kullanımı: Unknown

KEV Eklenme Tarihi: 2026-06-05

Önerilen Aksiyon: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

CVE
CVE-2026-28318
Severity
HIGH
CVSS
7.5
EPSS
%10.66

Orijinal NVD Açıklaması

SolarWinds Serv-U is susceptible to specially crafted POST requests that crash the Serv-U service without authentication using Content-Encoding: deflate. Mitigation steps are provided to secure customer environments in the SolarWinds Trust Center if you are unable to deploy the update