CVE-2026-28318CISA KEVEPSS p60.0%
CVE-2026-28318SolarWinds Serv-U Uncontrolled Resource Consumption Vulnerability
SolarWinds / Serv-U
Description
SolarWinds Serv-U contains an uncontrolled resource consumption vulnerability that allows specially crafted POST requests using the Content-Encoding: deflate header to crash the Serv-U service without authentication.
Scoring
| CVSS | 7.5 () |
| Vector | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
| EPSS | 1.05% probability of exploitation · percentile 60.0% · 2026-06-19T12:03:05Z |
| Last modified | 2026-06-05 |
CISA KEV entry
Added to KEV: 2026-06-05
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.