Critical SolarWinds Web Help Desk Flaw Under Active Attack, Patch Now

What happened?

SolarWinds has released a hotfix to address a critical-severity vulnerability in Web Help Desk WHD. The Cybersecurity and Infrastructure Security Agency (CISA) warned on Thursday that attackers are actively exploiting the flaw.

What is the vulnerability?

The vulnerability, CVE-2024-28986, is a remote code execution (RCE) flaw that could allow an attacker to take complete control of an affected system.

What versions are affected?

All versions of SolarWinds Web Help Desk are affected by the vulnerability.

What should I do?

SolarWinds has released a patch to address the vulnerability. All users of the application should apply the hotfix out of an abundance of caution.

What is SolarWinds saying?

"SolarWinds is aware of the vulnerability and has released a hotfix to address the issue," the company said in a statement. "We recommend that all users apply the hotfix as soon as possible."

Who is affected?

Any organization using SolarWinds Web Help Desk is potentially affected by this vulnerability.

What are the potential impacts?

An attacker who successfully exploits the vulnerability could gain complete control of an affected system, including the ability to execute arbitrary code, install malware, and access sensitive data.

What should I do if I am affected?

If you are using SolarWinds Web Help Desk, you should apply the hotfix as soon as possible. You should also review your security logs for any suspicious activity and take appropriate action if necessary.

Conclusion

This is a serious vulnerability that could have a significant impact on organizations using SolarWinds Web Help Desk. It is important to apply the hotfix as soon as possible to protect your systems from attack.