Vulnerabilities > Solarwinds > WEB Help Desk > 12.8.3

DATE CVE VULNERABILITY TITLE RISK
2025-02-11 CVE-2024-28989 Use of Hard-coded Credentials vulnerability in Solarwinds web Help Desk
SolarWinds Web Help Desk was found to have a hardcoded cryptographic key that could allow the disclosure of sensitive information from the software.
local
low complexity
solarwinds CWE-798
5.5
2024-12-10 CVE-2024-45709 Path Traversal vulnerability in Solarwinds web Help Desk
SolarWinds Web Help Desk was susceptible to a local file read vulnerability.
local
low complexity
solarwinds CWE-22
5.5
2024-08-21 CVE-2024-28987 Unspecified vulnerability in Solarwinds web Help Desk
The SolarWinds Web Help Desk (WHD) software is affected by a hardcoded credential vulnerability, allowing remote unauthenticated user to access internal functionality and modify data.
network
low complexity
solarwinds
critical
9.1
2024-08-13 CVE-2024-28986 Deserialization of Untrusted Data vulnerability in Solarwinds web Help Desk
SolarWinds Web Help Desk was found to be susceptible to a Java Deserialization Remote Code Execution vulnerability that, if exploited, would allow an attacker to run commands on the host machine.
network
low complexity
solarwinds CWE-502
critical
9.8