SolarWinds Web Help Desk Hardcoded Credential Vulnerability (CVE-2024-28987) – Critical

2024-11-29

Vulnerability :

This article describes a critical vulnerability (CVE-2024-28987) affecting SolarWinds Web Help Desk (WHD) software. The vulnerability arises from hardcoded credentials within the software, allowing remote attackers to gain unauthorized access and potentially modify sensitive data.

Vulnerability Details:

Platform: SolarWinds Web Help Desk (WHD)
Version: Not specified in the provided information.
Vulnerability: Hardcoded Credentials
Severity: Critical (CVSS score: 9.1)
Date: August 21, 2024 (NVD Published Date)

What Undercode Says:

This vulnerability is critical and allows attackers to compromise your SolarWinds Web Help Desk system. Immediate patching is recommended.

Additional Notes:

CISA (Cybersecurity and Infrastructure Security Agency) has listed this vulnerability (CVE-2024-28987) in their Known Exploited Vulnerabilities Catalog, indicating active exploitation attempts.
SolarWinds has released a patch to address this vulnerability.

It is recommended to update your SolarWinds Web Help Desk software to the latest patched version as soon as possible.

References:

Reported By: Nvd.nist.gov
Undercode AI: https://ai.undercodetesting.com

Image Source:

OpenAI: https://openai.com
Undercode AI DI v2: https://ai.undercode.helpFeatured Image

Scroll to Top