SolarWinds Web Help Desk Hardcoded Credential (CVE-2024-28987) - Vulnerability Database

SolarWinds Web Help Desk Hardcoded Credential (CVE-2024-28987)

Description

SolarWinds Web Help Desk has a hardcoded credential vulnerability. An unauthenticated attacker could gain access to the system, potentially allowing them to view sensitive information, manipulate data, and alter system configurations.

Remediation

Upgrade to the latest version of SolarWinds Web Help Desk.

References

Web Help Desk Hardcoded Credential Vulnerability (CVE-2024-28987)

Related Vulnerabilities

Severity

Critical

Classification

CVE-2024-28987

CWE-798

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N