heise PlusAbo
Anzeige

Another critical vulnerability in Solarwind's Web Help Desk closed

Attackers can gain unauthorized access to Solarwinds' Web Help Desk customer support software and manipulate data.

listen Print view
Woman points her finger at the word "Update"

(Image: Alfa Photo/Shutterstock.com)

1 min. read
Security
By

A"critical" vulnerability threatens Solarwind's Web Help Desk (WHD) and attackers can gain access with comparatively little effort.

Customer data at risk

Companies use the software for customer support, among other things. The manufacturer is now warning of possible attacks. Attackers can access internal functions and modify data due to hard-coded access data (CVE-2024-28987).

The vulnerability should be closed after the installation of WHD 12.8.3 Hotfix 2. The developers explain in an article how admins can secure their systems.

Solarwinds recently closed a "critical" vulnerability (CVE-2024-28986) in WHD with 12.8.3 Hotfix 1. According to the developers, however, Hotfix 1 also caused errors and, among other things, the upload function was no longer available. This has now been rectified with Hotfix 2.

(des)

Don't miss any news – follow us on Facebook, LinkedIn or Mastodon.

This article was originally published in German. It was translated with technical assistance and editorially reviewed before publication.

Beliebte Bestenlisten

Alle Angebote
Newsletter heise-Bot heise-Bot Push Nachrichten Push Push-Nachrichten