#untrusted-deserialization
#untrusted-deserialization

[ follow ]

SolarWinds Web Help Desk Exploited for RCE in Multi-Stage Attacks on Exposed Servers

Threat actors exploited internet-exposed SolarWinds Web Help Desk instances to achieve unauthenticated remote code execution, move laterally, and access high-value assets.

#solarwinds

fromTheregister

4 days ago

Information security

Critical SolarWinds Web Help Desk bug under attack

Attackers exploit SolarWinds Web Help Desk deserialization flaw CVE-2025-40551 enabling remote code execution; federal agencies given a three-day emergency patch deadline.

fromThe Hacker News

5 days ago

Information security

CISA Adds Actively Exploited SolarWinds Web Help Desk RCE to KEV Catalog

A critical untrusted-data deserialization vulnerability in SolarWinds Web Help Desk (CVE-2025-40551) enables unauthenticated remote code execution and is actively exploited.

fromTheregister

4 days ago

Information security

Critical SolarWinds Web Help Desk bug under attack

Information security

fromThe Hacker News

5 days ago

CISA Adds Actively Exploited SolarWinds Web Help Desk RCE to KEV Catalog

A critical untrusted-data deserialization vulnerability in SolarWinds Web Help Desk (CVE-2025-40551) enables unauthenticated remote code execution and is actively exploited.

more#solarwinds

[ Load more ]

#untrusted-deserialization#untrusted-deserialization

SolarWinds Web Help Desk Exploited for RCE in Multi-Stage Attacks on Exposed Servers

Critical SolarWinds Web Help Desk bug under attack

CISA Adds Actively Exploited SolarWinds Web Help Desk RCE to KEV Catalog

Critical SolarWinds Web Help Desk bug under attack

CISA Adds Actively Exploited SolarWinds Web Help Desk RCE to KEV Catalog

#untrusted-deserialization
#untrusted-deserialization