SolarWinds Web Help Desk Remote Code Execution Vulnerability

Last Update Date: 10 Mar 2026 Release Date: 25 Sep 2025 8017 Views

RISK: Extremely High Risk

Extremely High Risk

TYPE: Clients - Productivity Products

TYPE: Productivity Products

A vulnerability was identified in SolarWinds Web Help Desk. A remote attacker could exploit this vulnerability to trigger remote code execution on the targeted system.

 

Note:

CVE-2025-26399 is being exploited in the wild. SolarWinds Web Help Desk contain a deserialization of untrusted data vulnerability in AjaxProxy that could allow an attacker to run commands on the host machine.

 

[Updated on 2026-03-10]

Updated Risk Level, Description and Related Links.

Impact

  • Remote Code Execution

System / Technologies affected

  • SolarWinds Web Help Desk 12.8.7 and all previous versions

Solutions

Before installation of the software, please visit the software vendor web-site for more details.

Apply fixes issued by the vendor:

  • Update to SolarWinds Web Help Desk version 12.8.7 HF1 or later

Vulnerability Identifier

Source

Related Link

Related Tags

SolarWindsRemote Code ExecutionExploit In The Wild

Share with

Previous

Microsoft Edge Multiple Vulnerabilities

9 Mar 2026 22238 Views

Next

Zoom Products Multiple Vulnerabilities

11 Mar 2026 7440 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY