Critical Vulnerability in SolarWinds Web Help Desk

Published on 23 Aug 2024

SolarWinds has released a hotfix to address a critical vulnerability (CVE-2024-28987) affecting their Web Help Desk (WHD).

Successful exploitation of the vulnerability could allow a remote unauthenticated attacker to access internal functionality and modify data on targeted devices.

This vulnerability affects all versions of WHD up to 12.8.3 HF1.

Users and administrators of affected versions are advised to update their systems to WHD 12.8.3.1813 or 12.8.3 HF1 before deploying this hotfix. Users and administrators are also advised to create backups of all original files before replacing them during the hotfix installation process to avoid potential issues if the hotfix fails or not applied correctly.

More information is available here: