CVE-2026-28318 in Serv-Uinfo

Summary

by MITRE • 06/04/2026

SolarWinds Serv-U is susceptible to specially crafted POST requests that crash the Serv-U service without authentication using Content-Encoding: deflate. Mitigation steps are provided to secure customer environments in the SolarWinds Trust Center if you are unable to deploy the update

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsible

SolarWinds

Reservation

02/26/2026

Disclosure

06/04/2026

Moderation

accepted

Entry

VDB-368349

CPE

ready

CWE

CWE-400 (confirmed)

CVSS

7.5 (CNA)

EPSS

0.00000

KEV

Activities

very low

Sector

Agriculture, Hospital, ...

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-28318
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-28318
CVE Details	https://www.cvedetails.com/cve/CVE-2026-28318/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!