SolarWinds, has issued a patch for addressing a severe vulnerability in its Web Help Desk (WHD) platform. If exploited, could allow remote attackers to execute arbitrary commands on the host system.
The vulnerability, tracked as CVE-2024-28988, has a CVSS score of 9.8, stems from a Java Deserialization issue, which exposes the Web Help Desk software to remote code execution attacks. According to SolarWinds, this flaw could allow an unauthenticated attacker to run malicious commands on the system hosting the Web Help Desk, giving them near-unrestricted access.
The vulnerability affects all versions of SolarWinds Web Help Desk prior to version 12.8.3 HF3. SolarWinds has since released the updated version to address this critical flaw. Customers running SolarWinds Web Help Desk 12.8.3 HF2 or earlier are strongly urged to update to the latest version to secure their systems.
Recently, SolarWinds also addressed another critical vulnerability, CVE-2024-28987, which involves hardcoded credentials. The hardcoded username and password—”helpdeskIntegrationUser” and “dev-C4F8025E7″—could allow unauthorized remote attackers to access Web Help Desk endpoints, modifying or extracting sensitive data. Considering the nature of exploitation evidence and urgency, the US CISA added this vulnerability to its KEV catalog.
For more information, refer to the advisory
