SolarWinds Serv-U Exposure of Sensitive Information Vulnerability
(CVE-2023-23841)
Summary
SolarWinds Serv-U submits an HTTP request when changing or updating the File Share or File request attributes. When this occurs, part of the URL of the request discloses sensitive data.
Affected Products
- Serv-U 15.3.2 and earlier
Fixed Software Release
Advisory Details
Severity
4.8 Medium
Advisory ID
First Published
05/17/2023
Last Published
05/17/2023