Home/News/CISA Adds Actively Exploited SolarWinds Serv-U DoS Flaw to KEV Catalog
The Hacker News3 min read

CISA Adds Actively Exploited SolarWinds Serv-U DoS Flaw to KEV Catalog

Cybersecurity

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a critical vulnerability in SolarWinds Serv-U software to its Known Exploited Vulnerabilities (KEV) catalog on [Date of CISA announcement, if available, otherwise omit or use a placeholder like 'recently']. This flaw, identified as CVE-2026-28318, is a high-severity denial-of-service (DoS) vulnerability that can cause the Serv-U multi-protocol file server software to crash. CISA's inclusion of this vulnerability in the KEV catalog signifies that there is concrete evidence of its active exploitation in the wild, posing an immediate threat to organizations utilizing the affected software.

The Serv-U software is widely used by businesses for secure file transfer and remote access, making this vulnerability a significant concern for a broad range of industries. A successful exploitation of this DoS flaw could lead to service disruptions, rendering critical file transfer operations unavailable and potentially impacting business continuity. The CVSS score of 7.5 indicates a high level of severity, underscoring the urgency for organizations to address this issue. CISA mandates that federal agencies remove all identified vulnerabilities from their networks by [Date, if specified by CISA, otherwise omit or use a placeholder like 'a specified deadline'] to mitigate risks.

This development highlights the ongoing threat posed by vulnerabilities in widely deployed software. The inclusion in the KEV catalog serves as a critical alert for all organizations, not just federal agencies, to prioritize patching and remediation efforts. SolarWinds has previously faced scrutiny following the 2020 supply chain attack, which involved the compromise of its Orion platform. While this new vulnerability is distinct from the 2020 incident, it underscores the persistent need for robust cybersecurity practices and timely software updates to defend against evolving threats. Organizations are advised to consult SolarWinds' security advisories for specific guidance on patching and mitigating CVE-2026-28318.

Original source — read the full reporting at the publisher:

Read on The Hacker News