{"vulnerability": "cve-2026-28318", "sightings": [{"uuid": "db2110d6-530f-4ff7-bdd7-412c3b1c5b2a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28318", "type": "seen", "source": "https://bsky.app/profile/cvesentinel.bsky.social/post/3mnkpelghy22d", "content": "\ud83d\uded1 CVE-2026-28318\nSolarWinds Serv-U\nCVSS 7.5 / EPSS 0% / KEV\nTL;DR: SolarWinds Serv-U is susceptible to specially crafted POST requests that crash the Serv-U ser\u2026\nhttps://cvesentinel.com/report/CVE-2026-28318?utm_source=bluesky&utm_medium=social&utm_campaign=cvesentinel\n#infosec #CVE #vulnerability", "creation_timestamp": "2026-06-05T17:53:06.327922Z"}, {"uuid": "b9f811f1-8e8a-43d7-ab51-ba90a980079e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-28318", "type": "seen", "source": "https://cyber.gc.ca/en/alerts-advisories/solarwinds-security-advisory-av26-549", "content": "", "creation_timestamp": "2026-06-04T11:54:48.000000Z"}, {"uuid": "06d0a570-3628-48ba-8bc7-094128fcd6be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28318", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/6665471", "content": "2026-06-05: [CVE-2026-28318] SolarWinds Serv-U Uncontrolled Resource Consumption VulnerabilitySolarWinds Serv-U contains an uncontrolled resource consumption vulnerability that allows specially crafted POST requests using the Content-Encoding: deflate header to crash the Serv-U service without authentication.\ncisakev", "creation_timestamp": "2026-06-05T17:46:15.513384Z"}, {"uuid": "33132aac-a004-44e2-98c5-578eaccb5cb6", "vulnerability_lookup_origin": "405284c2-e461-4670-8979-7fd2c9755a60", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28318", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/b00d5422-d924-4e37-a319-af4fa11ed523", "content": "", "creation_timestamp": "2026-06-05T18:00:02.558663Z"}, {"uuid": "3b7f448d-1160-40e1-bb3d-96ea20a93427", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28318", "type": "seen", "source": "https://bsky.app/profile/secdb.bsky.social/post/3mnkt4ofewr2o", "content": "\ud83d\udea8 CISA Adds One Known Exploited Vulnerability to Catalog (https://secdb.nttzen.cloud/security-advisory/detail/CISA-2026:0605)\n\n\u26a0\ufe0f CVE-2026-28318 - SolarWinds Serv-U Uncontrolled Resource Consumption Vulnerability\n\n\n#ZEN #SecDB #InfoSec #CISA_KEV", "creation_timestamp": "2026-06-05T19:00:14.048604Z"}, {"uuid": "e7f74639-711d-4edd-97b1-bf64df0adc2d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28318", "type": "seen", "source": "https://bsky.app/profile/todb2.hugesuccess.org/post/3mnks2yssm6q2", "content": "w/r/t CVE-2026-28318 - I kinda like the mitigation guidance of \"well just block HTTP clients from sending `Content-encoding: deflate` on POSTs and you're good. Which sounded crazy to me, but is it?\n\nI know POSTs can be compressed, but I'd expect clients to use `gzip` pretty much exclusively. The [\u2026]", "creation_timestamp": "2026-06-05T18:42:19.552052Z"}, {"uuid": "9412f6ea-79b8-4d25-9925-71190687cc21", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28318", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3mnm77udcj4r2", "content": "CISA Warns of Exploited SolarWinds Serv-U Vulnerability The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added CVE-2026-28318 to its Known Exploited Vulnerabilities (KEV) cata...\n\n#Cyber #Security #News #Cyber #security #news #vulnerability\n\nOrigin | Interest | Match", "creation_timestamp": "2026-06-06T08:09:30.622166Z"}, {"uuid": "3c480856-7e03-4888-a18c-cf7d2d1184c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28318", "type": "seen", "source": "https://bsky.app/profile/boredchilada.bsky.social/post/3mnkwmrimu72n", "content": "~Cisa~\nCISA added SolarWinds Serv-U vulnerability CVE-2026-28318 to its KEV catalog due to active exploitation.\n-\nIOCs: CVE-2026-28318\n-\n#CVE202628318 #SolarWinds #ThreatIntel", "creation_timestamp": "2026-06-05T20:02:55.769813Z"}, {"uuid": "f83a9a61-4c05-4b65-a84a-78f6d568bd4f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28318", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mnl2oh32kk2j", "content": "CISA says attackers are exploiting SolarWinds Serv-U CVE-2026-28318 to crash exposed servers via crafted POST requests. SolarWinds has issued Hotfix 1 for the denial-of-service flaw. #SolarWinds #ServU #CISA", "creation_timestamp": "2026-06-05T21:15:26.907444Z"}, {"uuid": "1711f9c7-5bc2-4c7f-b9a7-c05fac9dbba3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28318", "type": "seen", "source": "https://bsky.app/profile/happeningnow.news/post/3mnlkspnd6i2j", "content": "CISA Adds One Known Exploited Vulnerability to Catalog\nCISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2026-28318 SolarWinds Serv-U Uncontrolled\u2026\n\n\ud83d\udd17 https://hnow.live/a/0ddbd4c9", "creation_timestamp": "2026-06-06T02:04:10.004367Z"}, {"uuid": "214979d9-b8b2-4012-8d65-f1232de5fca8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28318", "type": "seen", "source": "https://bsky.app/profile/cyberlensai.bsky.social/post/3mnli7wttdj22", "content": "CVE watch: CVE-2026-28318: SolarWinds Serv-U \u2014 SolarWinds Serv-U Uncontrolled\u2026\n\nCheck exposure, dependency, and agent/tool access before panic-patching. Inventory beats vibes.\n\nSource: cisa.gov\nhttps://www.cisa.gov/known-exploited-vulnerabilities-catalog?search_api_fulltext=CVE-2026-28318", "creation_timestamp": "2026-06-06T01:17:52.306365Z"}, {"uuid": "3fadff03-fd77-4674-b71a-5d82611a5d15", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-28318", "type": "seen", "source": "https://bsky.app/profile/ahmandonk.bsky.social/post/3mnlw3fgpsz2g", "content": "\ud83d\udcf0 CISA Rilis Peringatan Darurat: Celah Keamanan SolarWinds Serv-U Eksploitasi Aktif untuk Melumpuhkan Server\n\n\ud83d\udc49 Baca artikel lengkap di sini: https://ahmandonk.com/2026/06/06/isa-peringatkan-celah-solarwinds-serv-u-di-eksploitasi-untuk-crash-server/\n\n#cisa #cve-2026-28318 #denialOfService #ind", "creation_timestamp": "2026-06-06T05:25:51.956295Z"}, {"uuid": "377d7225-6e8a-4b0f-808c-ead02cf04f21", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28318", "type": "seen", "source": "https://thehackernews.com/2026/06/cisa-adds-actively-exploited-solarwinds.html", "content": "The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a high-severity security flaw impacting SolarWinds Serv-U  multi-protocol file server software to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation.\n\nThe vulnerability, tracked as CVE-2026-28318 (CVSS score: 7.5), is a denial-of-service (DoS) bug that causes the service to crash", "creation_timestamp": "2026-06-06T06:14:31.000000Z"}, {"uuid": "f4978018-345a-4afc-bd14-5245d304f6bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28318", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mnma7l7qwd23", "content": "CISA Warns: SolarWinds Serv-U Zero-Day CVE-2026-28318 Actively Exploited \u2013 Patch Now or Face DoS Attacks! +\u00a0Video\n\nIntroduction: The SolarWinds Serv-U file transfer software, widely used for managed file transfer (MFT) across enterprises, has become the latest victim of active exploitation. CISA\u2026", "creation_timestamp": "2026-06-06T08:27:10.308468Z"}, {"uuid": "f8aefccd-dec2-43b9-8549-1aee2c1892b8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28318", "type": "seen", "source": "https://bsky.app/profile/infosecbriefly.bsky.social/post/3mnmbo6pj2c2f", "content": "CISA added CVE-2026-28318 to KEV, citing active exploitation of a SolarWinds Serv-U DoS flaw that crashes the service via crafted unauthenticated POST requests.\n", "creation_timestamp": "2026-06-06T08:53:14.282003Z"}, {"uuid": "de906ebd-cbb0-4580-99f6-717309b18ad6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28318", "type": "seen", "source": "https://bsky.app/profile/thecybermind.co/post/3mnmqmciivq2w", "content": "\ud83c\udfe2 BOARD-LEVEL CYBER RISK DIRECTIVE: Executive liability, cyber insurance compliance, and corporate data sovereignty face immediate exposure via active exploitation of SolarWinds Serv-U (CVE-2026-28318). Mandatory remediation actions are required by June 19, 2026. https://thecybermind.co/7t7p", "creation_timestamp": "2026-06-06T13:20:37.034668Z"}, {"uuid": "17d6bf0c-6ceb-4fab-a27c-07a75ccb2696", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28318", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mnmhldg3ph23", "content": "CISA Issues Emergency Directive: SolarWinds Serv-U Zero-Day Under Active Attack\u2014Patch by June 19! +\u00a0Video\n\nIntroduction: A critical unauthenticated Denial-of-Service (DoS) vulnerability in SolarWinds Serv-U (CVE-2026-28318) is now being actively exploited in the wild. This flaw allows any remote\u2026", "creation_timestamp": "2026-06-06T10:39:00.934094Z"}, {"uuid": "2a439f7b-1a09-4366-9d96-117572832d3a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28318", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mnmhwtcigl2z", "content": "CISA added CVE-2026-28318, an actively exploited DoS flaw in SolarWinds Serv-U, to its KEV catalog. SolarWinds has released a fix in 15.5.4 HF1. #SolarWinds #ServU #CISA", "creation_timestamp": "2026-06-06T10:45:27.033749Z"}, {"uuid": "b39bfb04-e623-4ffa-a3a6-9b7712602e03", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28318", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mnmicnehlv2d", "content": "SolarWinds Serv-U\u306eDoS\u8106\u5f31\u6027(CVE-2026-28318)\u304cCISA KEV\u306b\u8ffd\u52a0\u3002\u653b\u6483\u8005\u306f\u30b5\u30fc\u30d3\u30b9\u3092\u30af\u30e9\u30c3\u30b7\u30e5\u3055\u305b\u308b\u3053\u3068\u304c\u53ef\u80fd\u3002", "creation_timestamp": "2026-06-06T10:52:03.007762Z"}, {"uuid": "62133dbe-6dde-42a6-9a3e-a24cff2b008a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28318", "type": "seen", "source": "https://bsky.app/profile/thecybermind.co/post/3mnmmdgtrph2g", "content": "CISA KEV Threat Alert:\u2026\ud83d\udea8 CRITICAL CISA KEV ALERT: Threat actors are actively exploiting CVE-2026-28318, an unauthenticated Denial of Service flaw crashing internet-exposed SolarWinds Serv-U instances using malformed HTTP POST requests. Federal mandate deadlines are set.\nhttps://thecybermind.co/h1gp", "creation_timestamp": "2026-06-06T12:04:04.458992Z"}, {"uuid": "b2ac2884-0014-471f-aa59-2f093ae8a3ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28318", "type": "seen", "source": "https://bsky.app/profile/securitycyberuk.bsky.social/post/3mnmzlbasn62c", "content": "\ud83d\udea8 [CRITICAL INFRASTRUCTURE ALERT]: CVE-2026-28318\n\n\u2022 CVE ID: CVE-2026-28318\n\u2022 CVSS Score: 7.5 (High)\n\u2022 Affected: SolarWinds Serv-U \n\nhttps://securitycyber.uk", "creation_timestamp": "2026-06-06T16:01:06.361377Z"}]}