CVE-2024-28987: SolarWinds WHD Users at Risk of Unauthorized Access

SolarWinds has released updates to address a critical vulnerability in its Web Help Desk (WHD) software. The issue, identified as CVE-2024-28987 and rated 9.1 on the CVSS scale, allows remote, unauthenticated users to gain unauthorized access to vulnerable instances of the system.

Security researcher Zach Hanley from Horizon3 was credited with discovering and reporting this vulnerability. The flaw is reportedly linked to the presence of hardcoded credentials within the system.

To protect against this vulnerability, users are advised to update their software to version 12.8.3 Hotfix 2. However, the successful application of this update requires the prior installation of Web Help Desk versions 12.8.3.1813 or 12.8.3 HF1.

This incident occurred just a week after SolarWinds issued an update to fix another critical vulnerability in the same software, which could be exploited for arbitrary code execution (CVE-2024-28986, CVSS score: 9.8).

According to the U.S. Cybersecurity and Infrastructure Security Agency (CISA), this vulnerability is already being actively exploited in real-world attacks, although details of its exploitation remain unknown.

Meanwhile, additional information on CVE-2024-28987 is expected next month. It is crucial to install security updates as soon as possible to minimize potential risks.