Trustwave SpiderLabs discovered three severe vulnerabilities in SolarWinds products: two in the Orion Platform (CVE-2021-25274 and CVE-2021-25275) and one in Serv-U FTP for Windows (CVE-2021-25276). The most critical, CVE-2021-25274, allowed remote code execution with high privileges, while others exposed insecure credential storage and unauthorized account creation. Though none were exploited in known attacks, patches were quickly issued. Trustwave advised immediate updates to Orion Platform 2020.2.4 and Serv-U FTP 15.2.2 Hotfix 1. Their products can detect these flaws, with IDS/IPS signatures available for CVE-2021-25274.

Join for free to read