Vulnerabilities > CVE-2024-28987 - Unspecified vulnerability in Solarwinds web Help Desk
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
NONE Summary
The SolarWinds Web Help Desk (WHD) software is affected by a hardcoded credential vulnerability, allowing remote unauthenticated user to access internal functionality and modify data.
Vulnerable Configurations
Related news
- Another critical SolarWinds Web Help Desk bug fixed (CVE-2024-28987) (source)
- PoC for critical SolarWinds Web Help Desk vulnerability released (CVE-2024-28987) (source)
- Week in review: Windows Server 2025 gets hotpatching option, PoC for SolarWinds WHD flaw released (source)
- CISA Warns of Active Exploitation in SolarWinds Help Desk Software Vulnerability (source)