SolarWinds Serv-U 15.4 < 15.4 HF2 Authentication Bypass

Language:

Version 1.6 Dec 8, 2023, 11:43 AM IAVM reference Plugin Feed: 202312081143
Version 1.5 Dec 1, 2023, 10:14 AM IAVM reference Plugin Feed: 202312011014
Version 1.4 Nov 10, 2023, 8:33 AM IAVM reference Plugin Feed: 202311100833
Version 1.3 Sep 25, 2023, 2:20 PM CVSSv3 score source (set to "CVE-2023-40060") CVSS metrics ("CVSSv2 score" changed from 7.5 to 8.3. "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" to "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H". "CVSSv3 score" changed from 9.8 to 7.2. "CVSSv2 vector" changed from "CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P" to "CVSS2#AV:N/AC:L/Au:M/C:C/I:C/A:C") Plugin Feed: 202309251420
Version 1.2 Sep 13, 2023, 4:22 PM CVSS metrics ("CVSSv2 score" changed from 6.8 to 7.5. "CVSSv3 vector" changed from "CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H" to "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H". "CVSSv2 vector" changed from "CVSS2#AV:N/AC:H/Au:M/C:C/I:C/A:C" to "CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P". "CVSSv3 score" changed from 6.6 to 9.8) CVSSv2 severity (based on CVE-2023-40060, severity increased from "Medium" to "High") CVSSv3 score source (set to "CVE-2023-40060") CVSSv3 severity (based on CVE-2023-40060, severity increased from "Medium" to "High") Plugin Feed: 202309131622
Version 1.1 Sep 8, 2023, 6:04 PM IAVM reference Plugin Feed: 202309081804
Version 1.0 Sep 8, 2023, 4:12 PM New Plugin Feed: 202309081612

* Changelogs are generally available for changes made after Nov 1, 2022