CVE-2024-28986

CRITICALCISA KEV

9.8

Description

SolarWinds Web Help Desk was found to be susceptible to a Java Deserialization Remote Code Execution vulnerability that, if exploited, would allow an attacker to run commands on the host machine. While it was reported as an unauthenticated vulnerability, SolarWinds has been unable to reproduce it without authentication after thorough testing. However, out of an abundance of caution, we recommend all Web Help Desk customers apply the patch, which is now available.

Details CVE

Score CVSS v3.19.8

SeveriteCRITICAL

Vecteur CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vecteur d'attaqueNETWORK

ComplexiteLOW

Privileges requisNONE

Interaction utilisateurNONE

Publie8/13/2024

Derniere modification10/27/2025

Sourcekev

Observations honeypot0

CISA KEV

FournisseurSolarWinds

ProduitWeb Help Desk

Nom vulnerabiliteSolarWinds Web Help Desk Deserialization of Untrusted Data Vulnerability

Date ajout KEV2024-08-15

Date limite remediation2024-09-05

Utilise dans ransomwareUnknown

Produits affectes

solarwinds:web_help_desk

Faiblesses (CWE)

CWE-502

References

https://support.solarwinds.com/SuccessCenter/s/article/WHD-12-8-3-Hotfix-1(psirt@solarwinds.com)

https://www.solarwinds.com/trust-center/security-advisories/CVE-2024-28986(psirt@solarwinds.com)

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-28986(134c704f-9b21-4f2e-91b3-4a467353bcc0)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.