Bleeping Computer

SolarWinds Web Help Desk flaw is now exploited in attacks

CISA has added three flaws to its 'Known Exploited Vulnerabilities' (KEV) catalog, among which is a critical hardcoded credentials flaw in SolarWinds Web Help Desk (WHD) that the vendor fixed in late ...
TechRadar

SolarWinds left some serious security flaws in its Web Desk Help platform, and now it's under attack

Security researchers have uncovered a critical-severity vulnerability in one of SolarWinds' most popular software products. SolarWinds' Web Help Desk is a web-based IT service management software that ...
CSOonline

SolarWinds fixes Web Help Desk patch bypass for actively exploited flaw — again

‘Third time’s the charm?’ asks a prominent security researcher after what appears to be the same critical Java deserialization flaw gets a third security update. SolarWinds has released a third patch ...
CSOonline

Critical SolarWinds flaw finds exploitations in the wild despite available fixes

A security oversight by SolarWinds developers in August allowing remote access to sensitive credentials within its Web Help Desk (WHD) product has found active exploitations in the wild. According to ...