SolarWinds has issued a critical update for its Web Help Desk product after discovering hardcoded credentials that allow unauthenticated remote access to sensitive information.
The security vulnerability, tracked as CVE-2024-28987, has a CVSS severity rating of 9.1 and affects versions prior to 12.8.3 HF2, making it essential for users to install the hotfix.
Considering the high-profile client base of SolarWinds, including government and enterprise sectors, there is an immediate urgency for organizations to prioritize the installation of the hotfix to avoid security breaches.
Zach Hanley from Horizon3.ai highlighted the importance of applying the patch quickly, noting that after installation, non-existent page requests on patched systems will return zero content as a security measure.
Collection
[
|
...
]