SolarWinds has released a critical hotfix for its Web Help Desk software to address a severe remote code execution vulnerability (CVE-2025-26399). Organizations using WHD 12.8.7 are advised to update promptly to mitigate the risk of unauthenticated attacks. #CVE202526399 #SolarWindsWHD
Keypoints
- SolarWindsβ Web Help Desk version 12.8.7 is vulnerable to a critical RCE flaw caused by unsafe deserialization.
- CVE-2025-26399 is a patch bypass of previous vulnerabilities, making it a persistent security concern.
- The hotfix modifies key application files to patch the deserialization weakness and prevent exploitation.
- Exploitation of the vulnerability does not require user interaction or authentication, increasing its danger.
- Organizations should prioritize applying the Hotfix 1 update and follow official deployment guidance to ensure safety.
Read More: https://thecyberexpress.com/solarwinds-cve-2025-26399/