CVE-2025-40538 - Vulnerability Details

Threat entity extracted from intelligence sources

Frequency
7
occurrences
First Seen
February 24, 2026
Last Seen
February 25, 2026

CVE-2025-40538 is a vulnerability tracked across 2 threat clusters and 7 intelligence report mentions on ThreatCluster. First observed February 24, 2026; most recent activity February 25, 2026.

Related Threat Clusters

  • Critical Vulnerabilities in SolarWinds Serv-U Software Patched

    SolarWinds has issued security updates for four critical remote code execution vulnerabilities in its Serv-U software, which could allow attackers to gain root access to unpatched servers. The affected software is used…

    19 articles · Updated February 24, 2026
  • Active Exploitation of BeyondTrust RCE Vulnerability Detected

    A remote code execution (RCE) vulnerability in BeyondTrust products is currently under active exploitation. Organizations using affected BeyondTrust software are at risk, and immediate action is recommended to mitigate…

    30 articles · Updated February 13, 2026

Recent Intelligence Reports

  • Solarwinds Serv-U: Update patches four critical security vulnerabilities — Heise.De · February 25, 2026
  • SolarWinds Serv-U has some critical security flaws, so users should update now or face attack — Techradar · February 25, 2026
  • New Serv-U bugs extend SolarWinds’ run of high — Csoonline · February 25, 2026
  • Patch these 4 critical, make-me-root SolarWinds bugs ASAP — Theregister · February 24, 2026
  • Patch these 4 critical, make-me — Theregister · February 24, 2026
  • Critical SolarWinds Serv-U flaws offer root access to servers — Bleepingcomputer · February 24, 2026
  • Critical SolarWinds Serv — Bleepingcomputer · February 24, 2026

CVSS v3.1 Breakdown