VYPR
High severity7.2NVD Advisory· Published Sep 7, 2023· Updated Jun 17, 2026

CVE-2023-40060

CVE-2023-40060

Description

A vulnerability has been identified within Serv-U 15.4 and 15.4 Hotfix 1 that, if exploited, allows an actor to bypass multi-factor/two-factor authentication. The actor must have administrator-level access to Serv-U to perform this action. 15.4.  SolarWinds found that the issue was not completely fixed in 15.4 Hotfix 1.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • SolarWinds/Serv-U MFTllm-fuzzy2 versions
    15.4, 15.4 Hotfix 1+ 1 more
    • (no CPE)range: 15.4, 15.4 Hotfix 1
    • (no CPE)range: 15.4

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.