{"id":167408,"date":"2024-08-22T17:27:57","date_gmt":"2024-08-22T17:27:57","guid":{"rendered":"https:\/\/securityaffairs.com\/?p=167408"},"modified":"2024-08-22T17:29:44","modified_gmt":"2024-08-22T17:29:44","slug":"solarwinds-hardcoded-credential-flaw-web-help-desk","status":"publish","type":"post","link":"https:\/\/securityaffairs.com\/167408\/hacking\/solarwinds-hardcoded-credential-flaw-web-help-desk.html","title":{"rendered":"SolarWinds fixed a hardcoded credential issue in Web Help Desk"},"content":{"rendered":"
<\/div>\n
SolarWinds fixed a hardcoded credential flaw in its Web Help Desk (WHD) software that could allow attackers to gain unauthorized access to vulnerable instances.<\/h2>\n\n\n\n
SolarWinds has addressed a new security flaw, tracked as CVE-2024-28987 (CVSS score of 9.1) in its Web Help Desk (WHD) software that could allow remote unauthenticated attackers to gain unauthorized access to vulnerable instances.<\/p>\n\n\n\n
SolarWinds describes WHD as an affordable Help Desk Ticketing and Asset Management Software that is widely used by large enterprises and government organizations.<\/p>\n\n\n\n