CVE-2024-28072: 
Serv-U Managed File Transfer Server vulnerability analysis and mitigation

CVE-2024-28072 is a security vulnerability discovered in SolarWinds Serv-U software that affects versions prior to 15.4.2 Hotfix 1. The vulnerability allows highly privileged accounts to overwrite arbitrary files on the system with log output due to improper sanitization of log file path tags (NVD, SolarWinds Advisory).

The vulnerability has been assigned a CVSS v3.1 base score of 4.9 (Medium) by NIST with a vector string of CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N, while SolarWinds assessed it with a score of 5.7 (Medium) and vector string CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:L. The vulnerability is classified under CWE-532 (Insertion of Sensitive Information into Log File) (NVD).

The vulnerability allows attackers with high privileges to overwrite arbitrary files on the system using log output, potentially leading to system compromise through file manipulation (NVD).

SolarWinds has released Serv-U version 15.4.2 Hotfix 1 to address this vulnerability. Users are advised to upgrade to this version to mitigate the security risk (SolarWinds Advisory).