CISA adds SolarWinds flaw to exploited vulnerabilities catalog

The Cybersecurity and Infrastructure Security Agency added a critical hardcoded credentials flaw in SolarWinds Web Help Desk to its known exploited vulnerabilities catalog on Tuesday, marking the second actively exploited CVE in the same product since August.

The vulnerability, listed as CVE-2024-28987, allows a remote, unauthenticated attacker to access internal functionality and potentially modify data. The software defect has a CVSS score of 9.1.

SolarWinds previously said the vulnerability impacted customers using Web Help Desk 12.8.3 HF1 and all prior versions, in an August security advisory. The company told customers to upgrade to the fixed version at that time.

Researchers at Horizon3 discovered the hardcoded credentials vulnerability while doing research on a Java deserialization remote code execution vulnerability, listed as CVE-2024-28986, which was disclosed in August.

To read the complete article, visit Cybersecurity Dive.