SolarWinds Web Help Desk was found to be susceptible to an authentication bypass vulnerability that if exploited, would allow a malicious actor to execute actions and methods that should be protected by authentication.
The vulnerability classified as CWE-1390 (Weak Authentication) involves insufficient verification of user identity before performing protected operations in the application. An attacker, remotely and without possessing any credentials, can send crafted requests to application endpoints and bypass authentication mechanisms. This allows access to functions and methods that should be available only to logged-in and authorized users. The attack vector is network-based, requires no user interaction or special preconditions.
An attacker can perform arbitrary protected actions and methods of the application without authentication, which may lead to complete system takeover, disclosure of sensitive data, modification of configuration, or disruption of service availability.
SolarWinds Web Help Desk should be updated to version 2026.1 or later in accordance with information in the vendor's release notes and recommendations published in the SolarWinds security center at the address indicated in the references.
SolarWinds Web Help Desk — versions indicated in vendor references (patches available in WHD 2026.1 release)
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HSolarwinds Web Help Desk
APPSolarwinds< 2026.1
Related vulnerabilities
RCE przez deserializację w SolarWinds Web Help Desk — bez uwierzytelnienia
RCE przez deserializację AjaxProxy w SolarWinds Web Help Desk (nieuwierzytelniony)
SolarWinds Web Help Desk – hardcoded credential umożliwia zdalny dostęp
RCE przez Java Deserialization w SolarWinds Web Help Desk
SolarWinds Web Help Desk — zdalne wykonanie kodu przez niebezpieczną deserializację