#solarwinds

[ follow ]
#web-help-desk #remote-code-execution #cybersecurity #authentication-bypass #sec #patch-bypass
#web-help-desk
fromSecurityWeek
4 months ago
Information security

SolarWinds Makes Third Attempt at Patching Exploited Vulnerability

SolarWinds released a third hotfix for a critical unauthenticated AjaxProxy deserialization RCE (CVE-2025-26399) that bypasses prior patches.
fromComputerWeekly.com
4 months ago
Information security

SolarWinds warns over dangerous RCE flaw | Computer Weekly

SolarWinds Web Help Desk contains an unauthenticated AjaxProxy deserialization RCE (CVE-2025-26399) that bypasses prior fixes and requires immediate patching via the 12.8.7 hotfix.
more#web-help-desk
#sec
more#sec
fromTechzine Global
2 months ago

SolarWinds lawsuit dropped: CISOs can breathe a sigh of relief

A lawsuit brought by the US Securities & Exchange Commission (SEC) against SolarWinds has been dropped. The legal fire was also directed at the company's CISO, Timothy G. Brown. Brown's alleged personal responsibility will now not be determined in court. It therefore appears that CISOs have less to fear from the law than previously thought. CISOs are responsible for securing their company's IT infrastructure.
Information security
Information security
fromNextgov.com
2 months ago

SEC to drop high-profile SolarWinds hack lawsuit

The SEC dismissed its lawsuit accusing SolarWinds and its CISO of misleading investors about cybersecurity weaknesses related to the Sunburst breach.
Information security
fromTheregister
2 months ago

SEC bails on SolarWinds lawsuit

The SEC has dismissed its civil enforcement lawsuit against SolarWinds and its CISO over alleged misleading security practices tied to the 2020 SUNBURST supply-chain attack.
[ Load more ]