The US cybersecurity agency, CISA, warned about a critical flaw in SolarWinds Web Help Desk being exploited in attacks.
Identified as CVE-2024-28986, with a 9.8 CVSS score, this Java deserialization issue allows remote code execution, enabling attackers to control the host machine. Despite initial reports of it being exploitable without authentication, SolarWinds confirmed the necessity of authentication after tests. A hotfix was released, applicable solely for version 12.8.3.1813, advising customers to update immediately.
Notably, installations using SAML SSO shouldn’t apply this hotfix. Shortly after disclosure, CISA added the vulnerability to its KEV catalog due to evidence of active exploitation.
Read more – SolarWinds Web Help Desk Vulnerability Possibly Exploited as Zero-Day
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.
