An Insecure Direct Object Reference (IDOR) vulnerability exists in Serv-U, which when exploited, gives a malicious actor the ability to execute native code as a privileged account.
This issue requires administrative privileges to abuse. On Windows deployments, the risk is scored as a medium because services frequently run under less-privileged service accounts by default.
References
| Link | Resource |
|---|---|
| https://documentation.solarwinds.com/en/success_center/servu/content/release_notes/servu_15-5-4_release_notes.htm | Release Notes Vendor Advisory |
| https://www.solarwinds.com/trust-center/security-advisories/CVE-2025-40541 | Vendor Advisory |
Configurations
History
24 Feb 2026, 17:56
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | CWE-639 | |
| First Time |
Solarwinds
Solarwinds serv-u |
|
| References | () https://documentation.solarwinds.com/en/success_center/servu/content/release_notes/servu_15-5-4_release_notes.htm - Release Notes, Vendor Advisory | |
| References | () https://www.solarwinds.com/trust-center/security-advisories/CVE-2025-40541 - Vendor Advisory | |
| CPE | cpe:2.3:a:solarwinds:serv-u:*:*:*:*:*:*:*:* |
24 Feb 2026, 08:16
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2026-02-24 08:16
Updated : 2026-02-24 17:56
NVD link : CVE-2025-40541
Mitre link : CVE-2025-40541
CVE.ORG link : CVE-2025-40541
JSON object : View
Products Affected
solarwinds
- serv-u