<ciso brief/>
Tag Banner

All news with #hotfix tag

all tags →

Tue, September 23, 2025

SolarWinds issues third patch for Web Help Desk RCE

#SolarWinds #Hotfix #Patch #Security Advisory #Insecure Deserialization #Web Help Desk

🔒 SolarWinds has released a hotfix addressing a critical unauthenticated remote code execution vulnerability in Web Help Desk tracked as CVE-2025-26399. The flaw affects WHD 12.8.7 and is caused by unsafe deserialization in the AjaxProxy component, described as a patch bypass of earlier CVE-2024-28986/28988 fixes. Administrators should obtain the hotfix from the SolarWinds Customer Portal and follow the vendor’s JAR replacement steps promptly.

read more →