#deserialization-rce
#deserialization-rce

[ follow ]

SolarWinds patches critical RCE - for the third time

SolarWinds issued a third hotfix for a critical (9.8) unauthenticated deserialization RCE in Web Help Desk, which remains patch-bypassed and likely exploitable.

Information security

fromThe Hacker News

6 days ago

SolarWinds Releases Hotfix for Critical CVE-2025-26399 Remote Code Execution Flaw

Critical unauthenticated deserialization vulnerability CVE-2025-26399 in SolarWinds Web Help Desk allows remote code execution as SYSTEM; update to 12.8.7 HF1.

[ Load more ]

#deserialization-rce#deserialization-rce

SolarWinds patches critical RCE - for the third time

SolarWinds Releases Hotfix for Critical CVE-2025-26399 Remote Code Execution Flaw

#deserialization-rce
#deserialization-rce