High severity7.2NVD Advisory· Published Sep 7, 2023· Updated Jun 17, 2026
CVE-2023-40060
CVE-2023-40060
Description
A vulnerability has been identified within Serv-U 15.4 and 15.4 Hotfix 1 that, if exploited, allows an actor to bypass multi-factor/two-factor authentication. The actor must have administrator-level access to Serv-U to perform this action. 15.4. SolarWinds found that the issue was not completely fixed in 15.4 Hotfix 1.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
215.4, 15.4 Hotfix 1+ 1 more
- (no CPE)range: 15.4, 15.4 Hotfix 1
- (no CPE)range: 15.4
Patches
Vulnerability mechanics
References
2- support.solarwinds.com/SuccessCenter/s/article/Serv-U-15-4-0-Hotfix-2nvdVendor Advisory
- www.solarwinds.com/trust-center/security-advisories/CVE-2023-40060nvdVendor Advisory
News mentions
0No linked articles in our index yet.