SolarWinds fixes Serv-U bug exploited for Log4j attacks

SolarWinds has patched a newly discovered Serv-U vulnerability that was used to propagate Log4j attacks within LDAP servers. The vulnerability, found by Microsoft during its monitoring of Log4j attacks, was an input validation vulnerability permitting unsanitized queries over the network. The vulnerability, identified as CVE-2021-35247, has now been fixed with the release of Serv-U 15.3.