CISA KEV order for SolarWinds Serv-U CVE-2026-28318
Public Sector Action
Summary
Hide ▲
Show ▼
CISA added CVE-2026-28318 affecting SolarWinds Serv-U to the KEV catalog and ordered FCEB agencies to remediate it by June 19, 2026. The directive expands operational urgency for federal civilian environments because the flaw is tied to active exploitation. SolarWinds says the issue is fixed in Serv-U 15.5.4 HF1.
Related Happenings
SolarWinds Serv-U advisory and mitigations for CVE-2026-28318
Advisory/Mitigation
First: 06.06.2026 11:14
Last: 06.06.2026 11:14
Sources 1
How related:
The issue has been addressed in SolarWinds Serv-U version 15.5.4 HF1. As mitigations, it's advised to limit access to known addresses and block any request containing "content-encoding" since the vulnerable service does not require this functionality.
About this happening:
**SolarWinds Serv-U** mitigation guidance now covers **CVE-2026-28318**, reducing **unauthenticated DoS** risk from specially crafted POST requests. SolarWinds says the flaw is ad...
SolarWinds Serv-U advisory and mitigations for CVE-2026-28318
Advisory/MitigationHow related: The issue has been addressed in SolarWinds Serv-U version 15.5.4 HF1. As mitigations, it's advised to limit access to known addresses and block any request containing "content-encoding" since the vulnerable service does not require this functionality.
About this happening: **SolarWinds Serv-U** mitigation guidance now covers **CVE-2026-28318**, reducing **unauthenticated DoS** risk from specially crafted POST requests. SolarWinds says the flaw is ad...
SolarWinds Serv-U denial-of-service flaw actively exploited (CVE-2026-28318)
Vulnerability
First: 05.06.2026 22:15
Last: 05.06.2026 22:15
Sources 1
How related:
The vulnerability, tracked as CVE-2026-28318 (CVSS score: 7.5), is a denial-of-service (DoS) bug that causes the service to crash under certain conditions.
About this happening:
**CISA** added **CVE-2026-28318** affecting **SolarWinds Serv-U** to the **Known Exploited Vulnerabilities (KEV) catalog** after evidence of **active exploitation**. The **high-se...
SolarWinds Serv-U denial-of-service flaw actively exploited (CVE-2026-28318)
VulnerabilityHow related: The vulnerability, tracked as CVE-2026-28318 (CVSS score: 7.5), is a denial-of-service (DoS) bug that causes the service to crash under certain conditions.
About this happening: **CISA** added **CVE-2026-28318** affecting **SolarWinds Serv-U** to the **Known Exploited Vulnerabilities (KEV) catalog** after evidence of **active exploitation**. The **high-se...
PAN-OS GlobalProtect CVE-2026-0257 exploitation wave
Exploitation Wave
First: 01.06.2026 11:30
Last: 01.06.2026 11:30
Sources 1
About this happening:
A **CVE-2026-0257** exploitation wave is hitting **Palo Alto Networks PAN-OS GlobalProtect** appliances, creating **unauthorized VPN access** risk for **multiple customers**. **Ra...
PAN-OS GlobalProtect CVE-2026-0257 exploitation wave
Exploitation WaveAbout this happening: A **CVE-2026-0257** exploitation wave is hitting **Palo Alto Networks PAN-OS GlobalProtect** appliances, creating **unauthorized VPN access** risk for **multiple customers**. **Ra...
CISA KEV listing and FCEB patch order for CVE-2026-35616
Public Sector Action
First: 06.04.2026 19:02
Last: 06.04.2026 19:02
Sources 1
About this happening:
**CISA** added **CVE-2026-35616** to the **KEV Catalog** and ordered **FCEB agencies** to patch **FortiClient EMS** by **Thursday midnight, April 9**. The mandate matters because...
CISA KEV listing and FCEB patch order for CVE-2026-35616
Public Sector ActionAbout this happening: **CISA** added **CVE-2026-35616** to the **KEV Catalog** and ordered **FCEB agencies** to patch **FortiClient EMS** by **Thursday midnight, April 9**. The mandate matters because...
CISA KEV listing for Wing FTP CVE-2025-47813
Public Sector Action
First: 17.03.2026 07:23
Last: 17.03.2026 07:23
Sources 1
About this happening:
CISA added **CVE-2025-47813** in **Wing FTP Server** to the **KEV catalog** after evidence of **active exploitation**, putting the flaw under formal government tracking. The listi...
CISA KEV listing for Wing FTP CVE-2025-47813
Public Sector ActionAbout this happening: CISA added **CVE-2025-47813** in **Wing FTP Server** to the **KEV catalog** after evidence of **active exploitation**, putting the flaw under formal government tracking. The listi...
Timeline
-
06.06.2026 11:14 2 articles · 3h ago
CISA adds SolarWinds Serv-U CVE-2026-28318 to KEV catalog
Industry Or Public Sector UpdateCISA added CVE-2026-28318 affecting SolarWinds Serv-U multi-protocol file server software to its Known Exploited Vulnerabilities (KEV) catalog after evidence of active exploitation. CISA described the flaw as an uncontrolled resource consumption vulnerability that results in a denial-of-service (DoS) condition, and SolarWinds said specially crafted POST requests using Content-Encoding: deflate can crash the Serv-U service without authentication. SolarWinds says the issue is addressed in SolarWinds Serv-U version 15.5.4 HF1.
Show sources
- CISA Adds Actively Exploited SolarWinds Serv-U DoS Flaw to KEV Catalog — thehackernews.com — 06.06.2026 11:14
- CISA Adds Actively Exploited SolarWinds Serv-U DoS Flaw to KEV Catalog — thehackernews.com — 06.06.2026 11:14
-
06.06.2026 11:14 1 articles · 3h ago
FCEB agencies must address SolarWinds Serv-U CVE-2026-28318 by June 19, 2026
Legal Policy Action UpdateFederal Civilian Executive Branch agencies must address CVE-2026-28318 by June 19, 2026. The flaw affects SolarWinds Serv-U multi-protocol file server software and can crash the service without authentication through specially crafted POST requests using Content-Encoding: deflate; SolarWinds says the issue is addressed in SolarWinds Serv-U version 15.5.4 HF1.
Show sources
- CISA Adds Actively Exploited SolarWinds Serv-U DoS Flaw to KEV Catalog — thehackernews.com — 06.06.2026 11:14