CISA Warns of Active Exploitation in SolarWinds Help Desk Software Vulnerability
CISA Warns of Active Exploitation in SolarWinds Help Desk Software Vulnerability
16 October 2024
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a critical security flaw impacting SolarWinds Web Help Desk (WHD) software to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation.
Tracked as CVE-2024-28987 (CVSS score: 9.1), the vulnerability relates to a case of hard-coded credentials that could be abused to gain