A vulnerability has been identified within Serv-U 15.4 and 15.4 Hotfix 1 that, if exploited, allows an actor to bypass multi-factor/two-factor authentication. The actor must have administrator-level access to Serv-U to perform this action.
15.4. SolarWinds found that the issue was not completely fixed in 15.4 Hotfix 1.
CPE | Name | Operator | Version |
---|---|---|---|
serv-u | eq | 15.4.0 | |
serv-u | eq | 15.4.0 hotfix1 |