CVE-2024-28987

SolarWinds | Web Help DeskAdded 2024-10-15Remediation Deadline 2024-11-05

SolarWinds Web Help Desk Hardcoded Credential Vulnerability

SolarWinds Web Help Desk contains a hardcoded credential vulnerability that could allow a remote, unauthenticated user to access internal functionality and modify data.

Required Action

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Weakness Classification

CWE-798

References

https://www.solarwinds.com/trust-center/security-advisories/cve-2024-28987
https://nvd.nist.gov/vuln/detail/CVE-2024-28987

Cybersecurity Alerts

CVE-2024-28987

SolarWinds Web Help Desk Hardcoded Credential Vulnerability

Required Action

Weakness Classification

References