CVE-2025-40547
SolarWinds Serv-U Logic Abuse - Remote Code Execution Vulnerability
A logic error vulnerability exists in Serv-U which when abused could give a malicious actor with access to admin privileges the ability to execute code.
This issue requires administrative privileges to abuse. On Windows deployments, the risk is scored as a medium because services frequently run under less-privileged service accounts by default.
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Produtos afetados
SolarWinds · Serv-UQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →