CVE-2025-40540 - Vulnerability Details

Threat entity extracted from intelligence sources

Frequency
5
occurrences
First Seen
February 24, 2026
Last Seen
February 25, 2026

CVE-2025-40540 is a vulnerability tracked across 2 threat clusters and 5 intelligence report mentions on ThreatCluster. First observed February 24, 2026; most recent activity February 25, 2026.

Related Threat Clusters

  • Zyxel Addresses Critical RCE Flaw in Multiple Router Models

    Zyxel has issued security updates for a critical remote command execution vulnerability, tracked as CVE-2025-13942, affecting various router models. The flaw exists in the UPnP function, allowing unauthenticated…

    11 articles · Updated February 25, 2026
  • Critical Vulnerabilities in SolarWinds Serv-U Software Patched

    SolarWinds has issued security updates for four critical remote code execution vulnerabilities in its Serv-U software, which could allow attackers to gain root access to unpatched servers. The affected software is used…

    19 articles · Updated February 24, 2026

Recent Intelligence Reports

  • Solarwinds Serv-U: Update patches four critical security vulnerabilities — Heise.De · February 25, 2026
  • New Serv-U bugs extend SolarWinds’ run of high — Csoonline · February 25, 2026
  • Patch these 4 critical, make-me-root SolarWinds bugs ASAP — Theregister · February 24, 2026
  • Patch these 4 critical, make-me — Theregister · February 24, 2026
  • CVE-2025-13942 - Exploits & Severity — Feedly · February 24, 2026

CVSS v3.1 Breakdown