Описание
A vulnerability has been identified within Serv-U 15.4 that, if exploited, allows an actor to bypass multi-factor/two-factor authentication. The actor must have administrator-level access to Serv-U to perform this action.
Ссылки
- Release Notes
- Broken Link
- Release Notes
- Broken Link
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:solarwinds:serv-u:15.4.0:-:*:*:*:*:*:*
EPSS
Процентиль: 20%
0.00064
Низкий
7.2 High
CVSS3
Дефекты
CWE-284
Связанные уязвимости
CVSS3: 6.6
github
больше 2 лет назад
A vulnerability has been identified within Serv-U 15.4 that, if exploited, allows an actor to bypass multi-factor/two-factor authentication. The actor must have administrator-level access to Serv-U to perform this action.
EPSS
Процентиль: 20%
0.00064
Низкий
7.2 High
CVSS3
Дефекты
CWE-284