CISA Adds Actively Exploited SolarWinds Serv-U DoS Flaw to KEV Catalog

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a high-severity security flaw impacting SolarWinds Serv-U multi-protocol file server software to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerability, tracked as CVE-2026-28318 (CVSS score: 7.5), is a denial-of-service (DoS) bug that causes the service to crash

The article reports that CISA has added a high-severity denial-of-service vulnerability in SolarWinds Serv-U (CVE-2026-28318, CVSS 7.5) to its Known Exploited Vulnerabilities catalog based on evidence of active exploitation. This flaw allows remote attackers to crash the Serv-U service, impacting availability of a widely deployed file transfer product that has previously had serious vulnerabilities and KEV entries.[1][4] From a CyberSE.AI perspective, any organization using Serv-U in workflows that support AI systems (e.g., model artifact distribution, data ingestion pipelines, or MLOps file exchange) faces an AI supply chain availability risk: attackers could disrupt data flows, scheduled training jobs, or model updates, and potentially use service instability to mask other malicious activity. Organizations should map Serv-U into their AI software bill of materials (SBOM), prioritize patching and configuration hardening, and include KEV-driven vulnerability management in AI security readiness and supply chain governance processes.