SolarWinds – TheCyberThrone

CISA KEV Catalog Update – March 9 2026

CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog today, based on evidence of active exploitation CVE-2026-1603 — Ivanti Endpoint Manager (EPM) Authentication Bypass Tracked as…

PravinKarthik March 10, 2026

CISA’s adds 4 vulnerabilitis to KEV Catalog

On February 3, 2026, the Cybersecurity and Infrastructure Security Agency (CISA) updated its Known Exploited Vulnerabilities (KEV) Catalog with four significant vulnerabilities—each backed by evidence of active exploitation or credible…

PravinKarthik February 4, 2026

Critical SolarWinds Web Help Desk Vulnerabilities

SolarWinds has released a critical security advisory addressing multiple severe vulnerabilities in its Web Help Desk (WHD) platform that impact versions prior to 2026.1. Among the six issues patched, four…

PravinKarthik January 30, 2026

Solarwinds fixes Critical vulnerability CVE-2024-28988 in WHD Product

SolarWinds, has issued a patch for addressing a severe vulnerability in its Web Help Desk (WHD) platform. If exploited, could allow remote attackers to execute arbitrary commands on the host…

PravinKarthik October 18, 2024

SolarWinds fixes CVE-2024-28987 in WHD Product

SolarWinds has released an update to a new security flaw in its Web Help Desk (WHD) software that could allow remote unauthenticated attackers to gain unauthorized access to vulnerable instances.…

PravinKarthik August 24, 2024

CISA Adds Solarwinds CVE-2024-28986 to KEV Catalog

The U.S.CISA warned of a critical security vulnerability affecting SolarWinds Web Help Desk. This vulnerability, tracked as CVE-2024-28986 with a CVSS 9.8, has been added to CISA’s Known Exploited Vulnerabilities…

PravinKarthik August 16, 2024

SolarWinds fixes a critical vulnerability in Help Desk Product -CVE-2024-28986

SolarWinds has released patches for a critical vulnerability in its Web Help Desk software. The vulnerability, tracked as CVE-2024-28986, with a CVSS score of 9.8, allows for Java Deserialization Remote…

PravinKarthik August 14, 2024

PoC Exploit released for SolarWinds flaw CVE-2024-28895

SolarWinds recently released a patch for a newly discovered path-traversal vulnerability in Serv-U, tracked as CVE-2024-28995. The vulnerability affects SolarWinds Serv-U versions 15.4.2 HF 1 and earlier. Versions 15.4.2 HF…

PravinKarthik June 20, 2024