Discussion

⚠️ Critical Solarwinds Web Vulnerability Allows Remote Code Execution and Security Bypass

｢ Multiple critical vulnerabilities in SolarWinds Web Help Desk (WHD), culminating in unauthenticated remote code execution (RCE) via Java deserialization in CVE-2025-40551, were uncovered by https://Horizon3.ai researchers.
These flaws chain static credentials, security bypasses, and deserialization weaknesses, affecting versions prior to 2026.1 ｣

jbz

@jbz@indieweb.social replied · last week

https://cybersecuritynews.com/solarwinds-web-rce-vulnerability/

#solarwinds #rce #cybersecurity

Cyber Security News

Critical Solarwinds Web Vulnerability Allows Remote Code Execution and Security Bypass

A critical SolarWinds web vulnerability allows remote code execution and security bypass, raising urgent concerns for enterprise systems.

bonfire.cafe

A space for Bonfire maintainers and contributors to communicate

bonfire.cafe: About · Code of conduct · Privacy · Users · Instances

Bonfire social · 1.0.2-alpha.7 no JS en

Automatic federation enabled