CVE 9.1 CRITICAL

SolarWinds Serv-U Path Restriction Bypass Vulnerability_CVE-2025-40549

November 18, 2025 invoker category_cve

9.1 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

Description

A Path Restriction Bypass vulnerability exists in Serv-U that when abused, could give a malicious actor with access to admin privileges the ability to execute code on a directory.

This issue requires administrative privileges to abuse. On Windows systems, this scored as medium due to differences in how paths and home directories are handled.

AI Analysis

Path Restriction Bypass vulnerability in Serv-U allowing code execution on a directory with admin privileges

Basic Information

ID CVE-2025-40549

Source SolarWinds

Published Nov 18, 2025 at 08:41

Affected Product

Vendor SolarWinds

Product Serv-U

Version SolarWinds Serv-U 15.5.2 and prior versions

Affected Versions SolarWinds Serv-U SolarWinds Serv-U 15.5.2 and prior versions

CWE Classification

CWE-22

AI Assessment

AI Score 9.1 / 10

AI Severity Critical

Vendor SolarWinds

Product Serv-U

Version 15.5.2 and prior versions

References

{
    "lastseen": "",
    "description": "A Path Restriction Bypass vulnerability exists in Serv-U that when abused, could give a malicious actor with access to admin privileges the ability to execute code on a directory. \n\nThis issue requires administrative privileges to abuse. On Windows systems, this scored as medium due to differences in how paths and home directories are handled.",
    "published": "2025-11-18T08:41:24.582Z",
    "modified": "2025-11-18T08:41:24.582Z",
    "type": "cve",
    "title": "SolarWinds Serv-U Path Restriction Bypass Vulnerability",
    "source": "SolarWinds",
    "references": "https://www.solarwinds.com/trust-center/security-advisories/CVE-2025-40549\nhttps://documentation.solarwinds.com/en/success_center/servu/content/release_notes/servu_15-5-3_release_notes.htm",
    "id": "CVE-2025-40549",
    "bulletinFamily": "",
    "cwe": [
        "CWE-22"
    ],
    "cvelist": null,
    "sourceData": "SolarWinds Serv-U SolarWinds Serv-U 15.5.2 and prior versions",
    "sourceHref": "",
    "cvss": {
        "score": 9.1,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Serv-U",
    "version": "SolarWinds Serv-U 15.5.2 and prior versions",
    "vendor": "SolarWinds",
    "ai_description": "Path Restriction Bypass vulnerability in Serv-U allowing code execution on a directory with admin privileges",
    "ai_severity": "Critical",
    "ai_vendor": "SolarWinds",
    "ai_product": "Serv-U",
    "ai_version": "15.5.2 and prior versions",
    "ai_score": 9.1
}

💭 Join the Security Discussion ❌ Cancel Reply