BTC $71,807
2026 Bull Run Is Building Start trading with 5% OFF all fees
Sign Up Now
BTC $71,807
Bull Run 2026 | 5% Off Fees Open your Binance account today
Sign Up

Critical SolarWinds Web Help Desk Vulnerabilities Patched

SolarWinds patches critical flaws enabling unauthenticated remote takeover of systems.

  • SolarWinds released security updates for its Web Help Desk software to address six severe vulnerabilities, four of which are critical with CVSS scores of 9.8.
  • The critical flaws allow unauthenticated attackers to bypass authentication and achieve remote code execution (RCE) on affected systems, giving them control over the host machine.
  • Researchers from Horizon3.ai and watchTowr discovered the vulnerabilities, with some similar past SolarWinds flaws already cataloged as actively exploited.

SolarWinds patched multiple critical security flaws in its Web Help Desk software on January 29, 2026, after researchers found severe vulnerabilities enabling total system takeover. Among the six issues are four critical vulnerabilities rated 9.8 on the CVSS scale, which allow unauthenticated remote code execution.

- Advertisement -

Two of the critical flaws, CVE-2025-40551 and CVE-2025-40553, are untrusted data deserialization issues that let attackers run arbitrary commands. Consequently, an RCE via deserialization is a highly reliable vector for attackers to leverage. The other two critical flaws, CVE-2025-40552 and CVE-2025-40554, are authentication bypasses that can also lead to RCE.

Researchers Jimi Sebree from Horizon3.ai and Piotr Bazydlo from watchTowr discovered the vulnerabilities, which are all fixed in WHD 2026.1. Meanwhile, a detailed post by Sebree described CVE-2025-40551 as a deserialization issue from the AjaxProxy functionality.

The company has a history of patching similar flaws in Web Help Desk, including CVE-2024-28986 and CVE-2024-28987. Previously, the U.S. Cybersecurity and Infrastructure Security Agency added those older flaws to its Known Exploited Vulnerabilities catalog due to active exploitation. Therefore, customers must urgently update to the latest version to mitigate this significant risk.

✅ Follow BITNEWSBOT on Telegram, Facebook, LinkedIn, X.com, and Google News for instant updates.

- Advertisement -

Previous Articles:

- Advertisement -
Ad
Altseason Is Loading. Don't watch from the sidelines.
SOL $90.51
DOGE $0.0963
LINK $9.02
SUI $1.00
5% off fees when you sign up
Start Trading
Ad
Pay Less on Every Trade. For Life.
$10K/mo volume Save $60/yr
$50K/mo volume Save $300/yr
$100K/mo volume Save $600/yr
5% off all trading fees when you sign up
Claim Your Discount

Latest News

Saylor’s ‘Orange Dots’ Signal Fails to Clarify Bitcoin Strategy

Strategy founder Michael Saylor posted a cryptic signal on Sunday, prompting analysts to call...

Crypto’s $2T Crash Awaits BlackRock Shock & FOMO

Bitcoin has stabilized near $60,000 after a downturn erased $2 trillion from the crypto...

Cambridge: Ethereum Energy Intensity Low, Overall Use High

Ethereum consumes roughly 7.87 GWh annually, the second-lowest energy intensity per market value among...

Saylor and Back oppose BIP-110 fork over Bitcoin security fears

Michael Saylor and Adam Back have publicly opposed BIP-110, a temporary Bitcoin fork proposal...

China, India groups target Pakistani police in cyber espionage

Suspected China- and India-aligned threat actors targeted Pakistani law enforcement in a sustained cyber...

Must Read

17 Best Audiobooks On Blockchain Technology For Beginners

If you're looking to dive into the world of blockchain technology, you're in for a treat. The field is rapidly evolving and the potential...
Ad
Altseason Is Loading. These 4 coins are trending right now.
SOL $92.12
DOGE $0.0950
LINK $9.02
SUI $1.02
5% off spot fees when you sign up
Start Trading