CVE-2024-45712

2.6

Low

CVE-2024-45712

15 Apr 2025

psirt@solarwinds.com

Awaiting Analysis

Description

SolarWinds Serv-U is vulnerable to a client-side cross-site scripting (XSS) vulnerability. The vulnerability can only be performed by an authenticated account, on the local machine, from the local browser session. Therefore the risk is very low.

Exploits

No known exploits found for this CVE.

Search Exploit-DB

References

psirt@solarwinds.com

https://documentation.solarwinds.com/en/success_center/servu/content/release_notes/servu_15-5-1_release_notes.htm

psirt@solarwinds.com

https://www.solarwinds.com/trust-center/security-advisories/CVE-2024-45712

CVE-2024-45712 - CVE-2024-45712 | Cyber Hub