CVE-2023-40053

CVSS 3.1 Score 5.0 of 10 (medium)

Details

Published Dec 6, 2023

Updated: Dec 28, 2023

CWE ID 20

Summary

CVE-2023-40053 is a newly discovered vulnerability affecting Serv-U version 15.4. This issue grants authenticated actors the ability to insert malicious content into the file share function, potentially leading to security breaches and unauthorized data access. An attacker could exploit this vulnerability to upload harmful files, infect systems, or gain unauthorized access to sensitive information. Serv-U users are urged to apply the latest patch to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Serv-U

Affected Vendors

SolarWinds Inc.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sRWL46
https://www.cve.org/CVERecord?id=CVE-2023-40053
https://nvd.nist.gov/vuln/detail/CVE-2023-40053

Back to Vulnerability Database