Medium severity6.5NVD Advisory· Published May 16, 2018· Updated Jun 17, 2026
CVE-2018-10241
CVE-2018-10241
Description
A denial of service vulnerability in SolarWinds Serv-U before 15.1.6 HFv1 allows an authenticated user to crash the application (with a NULL pointer dereference) via a specially crafted URL beginning with the /Web%20Client/ substring.
Affected products
1- Range: <15.1.6 HFv1
Patches
Vulnerability mechanics
References
1- www.bishopfox.com/news/2018/05/solarwinds-serv-u-managed-file-transfer-denial-of-service/nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.