add in link to AKB analysis

sfewer-r7 · sfewer-r7 · commit 7e37ca5d1a62 · 2024-06-13T10:22:33.000+01:00
diff --git a/documentation/modules/auxiliary/gather/solarwinds_servu_fileread_cve_2024_28995.md b/documentation/modules/auxiliary/gather/solarwinds_servu_fileread_cve_2024_28995.md
@@ -3,6 +3,8 @@ This module exploits an unauthenticated file read vulnerability, due to director
 SolarWinds Serv-U FTP Server 15.4, Serv-U Gateway 15.4, and Serv-U MFT Server 15.4. All versions prior to
 the vendor supplied hotfix "15.4.2 Hotfix 2" (version 15.4.2.157) are affected.
 
+For a technical analysis of the vulnerability, read our [Rapid7 Analysis](https://attackerkb.com/topics/2k7UrkHyl3/cve-2024-28995/rapid7-analysis).
+
 ## Testing
 Follow the below instruction for either Linux or Windows.
 * Download a vulnerable version of SolarWinds Serv-U MFT Server, for example version `15.4.2.126`.
diff --git a/modules/auxiliary/gather/solarwinds_servu_fileread_cve_2024_28995.rb b/modules/auxiliary/gather/solarwinds_servu_fileread_cve_2024_28995.rb
@@ -24,7 +24,8 @@ def initialize(info = {})
         ],
         'References' => [
           ['CVE', '2024-28995'],
-          ['URL', 'https://www.solarwinds.com/trust-center/security-advisories/cve-2024-28995']
+          ['URL', 'https://www.solarwinds.com/trust-center/security-advisories/cve-2024-28995'],
+          ['URL', 'https://attackerkb.com/topics/2k7UrkHyl3/cve-2024-28995/rapid7-analysis']
         ],
         'DefaultOptions' => {
           'RPORT' => 443,
