top of page
perceptive_background_267k.jpg

SolarWinds Web Help Desk was found to be susceptible to an authentication bypass vulnerability that, if exploited, could allow an attacker to invoke specific ac…

Published:

27 januari 2026 om 23:00:00

Alert date:

28 januari 2026 om 09:01:36

Source:

nvd.nist.gov

Click to open the original link from this advisory

Enterprise Applications, Identity & Access

SolarWinds Web Help Desk contains an authentication bypass vulnerability that allows attackers to invoke specific actions within the application without proper authentication. This vulnerability affects the Web Help Desk product and could potentially allow unauthorized access to administrative functions. The vulnerability has been assigned CVE-2025-40554 and security advisories have been published by SolarWinds. Release notes for version 2026-1 are available indicating a fix may be included in that version.

Technical details

Mitigation steps:

Affected products:

SolarWinds Web Help Desk

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2025-40554
https://documentation.solarwinds.com/en/success_center/whd/content/release_notes/whd_2026-1_release_notes.htm
https://www.solarwinds.com/trust-center/security-advisories/CVE-2025-40554

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Deze website toont informatie afkomstig van externe bronnen; Perceptive aanvaardt geen verantwoordelijkheid voor de juistheid, volledigheid of actualiteit van deze informatie.

bottom of page