2024-11-29
Vulnerability :
This article describes a critical vulnerability (CVE-2024-28987) affecting SolarWinds Web Help Desk (WHD) software. The vulnerability arises from hardcoded credentials within the software, allowing remote attackers to gain unauthorized access and potentially modify sensitive data.
Vulnerability Details:
Platform: SolarWinds Web Help Desk (WHD)
Version: Not specified in the provided information.
Vulnerability: Hardcoded Credentials
Severity: Critical (CVSS score: 9.1)
Date: August 21, 2024 (NVD Published Date)
What Undercode Says:
This vulnerability is critical and allows attackers to compromise your SolarWinds Web Help Desk system. Immediate patching is recommended.
Additional Notes:
CISA (Cybersecurity and Infrastructure Security Agency) has listed this vulnerability (CVE-2024-28987) in their Known Exploited Vulnerabilities Catalog, indicating active exploitation attempts.
SolarWinds has released a patch to address this vulnerability.
It is recommended to update your SolarWinds Web Help Desk software to the latest patched version as soon as possible.
References:
Reported By: Nvd.nist.gov
Undercode AI: https://ai.undercodetesting.com
Image Source:
OpenAI: https://openai.com
Undercode AI DI v2: https://ai.undercode.help