New SolarWinds Serv-U vulnerability exploited in Log4j-related attacks