CISA Adds Actively Exploited SolarWinds Serv-U DoS Flaw to KEV Catalog
Summary
CISA has added a critical denial-of-service vulnerability in SolarWinds Serv-U software to its Known Exploited Vulnerabilities (KEV) catalog. The flaw, tracked as CVE-2026-28318 with a CVSS score of 7.5, is reportedly being actively exploited.
IFF Assessment
The active exploitation of a critical vulnerability in widely used software poses a significant risk to organizations, making it bad news for defenders.
Severity
The CVSS score of 7.5 indicates a high severity for this denial-of-service vulnerability, likely due to its potential impact on service availability and the ease with which it can be exploited to disrupt operations.
CISA KEV: Listed as actively exploited. Federal patch due: June 19, 2026. Known ransomware use: Unknown.
Defender Context
Organizations using SolarWinds Serv-U must prioritize patching this vulnerability immediately due to its active exploitation. Defenders should monitor network traffic for any signs of DoS attacks targeting Serv-U and ensure their incident response plans are updated to handle such incidents.