SolarWinds

CISA: Patch actively exploited SolarWinds Serv-U DoS vulnerability (CVE-2026-28318)

CISA, Don't miss, enterprise, file transfer, Government, Hot stuff, News, SolarWinds, vulnerability /

CISA: Patch actively exploited SolarWinds Serv-U DoS vulnerability (CVE-2026-28318) 2026-06-08 at 14:07 By Zeljka Zorz A vulnerability (CVE-2026-28318) that can be exploited to crash SolarWinds Serv-U file transfer servers is being leveraged by attackers in the wild, the US Cybersecurity and Infrastructure Security Agency (CISA) confirmed on Friday. The agency has ordered US federal civilian […]

CISA: Patch actively exploited SolarWinds Serv-U DoS vulnerability (CVE-2026-28318) Read More »

SolarWinds Serv-U Vulnerability Exploited in the Wild

exploited, SolarWinds, Vulnerabilities, vulnerability /

SolarWinds Serv-U Vulnerability Exploited in the Wild 2026-06-08 at 13:09 By Ionut Arghire Unauthenticated attackers can exploit the flaw via specially crafted POST requests that crash the Serv-U service. The post SolarWinds Serv-U Vulnerability Exploited in the Wild appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

SolarWinds Serv-U Vulnerability Exploited in the Wild Read More »

SolarWinds Patches Four Critical Serv-U Vulnerabilities

SolarWinds, Vulnerabilities, vulnerability /

SolarWinds Patches Four Critical Serv-U Vulnerabilities 2026-02-25 at 17:30 By Ionut Arghire The four security defects could be exploited for remote code execution but require administrative privileges. The post SolarWinds Patches Four Critical Serv-U Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

SolarWinds Patches Four Critical Serv-U Vulnerabilities Read More »

SolarWinds Serv-U hit by four critical RCE-level vulnerabilities

Don't miss, file transfer, file-sharing, Hot stuff, News, SolarWinds /

SolarWinds Serv-U hit by four critical RCE-level vulnerabilities 2026-02-25 at 13:55 By Zeljka Zorz SolarWinds has fixed four critical vulnerabilities in its popular Serv-U file transfer solution, which is used by businesses and organizations of all sizes. If exploited, the flaws may allow attackers to create a system admin user and/or execute code as a

SolarWinds Serv-U hit by four critical RCE-level vulnerabilities Read More »

Recent SolarWinds Flaws Potentially Exploited as Zero-Days

exploited, SolarWinds, Vulnerabilities, Zero-Day /

Recent SolarWinds Flaws Potentially Exploited as Zero-Days 2026-02-09 at 17:42 By Ionut Arghire Vulnerable SolarWinds Web Help Desk instances were exploited in December 2025 for initial access. The post Recent SolarWinds Flaws Potentially Exploited as Zero-Days appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Recent SolarWinds Flaws Potentially Exploited as Zero-Days Read More »

Fresh SolarWinds Vulnerability Exploited in Attacks

exploited, SolarWinds, Vulnerabilities, vulnerability /

Fresh SolarWinds Vulnerability Exploited in Attacks 2026-02-04 at 11:56 By Ionut Arghire The critical-severity SolarWinds Web Help Desk flaw could lead to unauthenticated remote code execution. The post Fresh SolarWinds Vulnerability Exploited in Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Fresh SolarWinds Vulnerability Exploited in Attacks Read More »

SolarWinds Patches Critical Web Help Desk Vulnerabilities

SolarWinds, Vulnerabilities, vulnerability /

SolarWinds Patches Critical Web Help Desk Vulnerabilities 2026-01-29 at 15:49 By Ionut Arghire The four critical flaws could be exploited without authentication for remote code execution or authentication bypass. The post SolarWinds Patches Critical Web Help Desk Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

SolarWinds Patches Critical Web Help Desk Vulnerabilities Read More »

SolarWinds fixes critical Web Help Desk RCE vulnerabilities, upgrade ASAP!

Don't miss, Horizon3.ai, Hot stuff, MSP, News, security update, SMBs, SolarWinds, vulnerability, WatchTowr /

SolarWinds fixes critical Web Help Desk RCE vulnerabilities, upgrade ASAP! 2026-01-29 at 11:34 By Zeljka Zorz SolarWinds has fixed six critical and high-severity vulnerabilities in its popular Web Help Desk (WHD) support ticketing and asset management solution, and is urging customers to upgrade to v2026.1 as soon as possible. The vulnerabilities The WHD vulnerabilities fixed

SolarWinds fixes critical Web Help Desk RCE vulnerabilities, upgrade ASAP! Read More »

SolarWinds Patches Three Critical Serv-U Vulnerabilities

SolarWinds, Vulnerabilities, vulnerability /

SolarWinds Patches Three Critical Serv-U Vulnerabilities 2025-11-20 at 09:32 By Eduard Kovacs SolarWinds Serv-U is affected by vulnerabilities that can be exploited for remote code execution. The post SolarWinds Patches Three Critical Serv-U Vulnerabilities appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

SolarWinds Patches Three Critical Serv-U Vulnerabilities Read More »

SolarWinds fixes critical Web Help Desk RCE vulnerability (CVE-2025-26399)

Don't miss, Hot stuff, News, patch, SolarWinds, vulnerability /

SolarWinds fixes critical Web Help Desk RCE vulnerability (CVE-2025-26399) 2025-09-24 at 19:44 By Zeljka Zorz SolarWinds has fixed yet another unauthenticated remote code execution vulnerability (CVE-2025-26399) in Web Help Desk (WHD), its popular web-based IT ticketing and asset management solution. While the vulnerability is currently not being leveraged by attackers, they might soon reverse-engineer the

SolarWinds fixes critical Web Help Desk RCE vulnerability (CVE-2025-26399) Read More »

SolarWinds Makes Third Attempt at Patching Exploited Vulnerability

exploited, Featured, patch, SolarWinds, Vulnerabilities, Web Help Desk /

SolarWinds Makes Third Attempt at Patching Exploited Vulnerability 2025-09-23 at 19:51 By Ionut Arghire CVE-2025-26399 is a patch bypass of CVE-2024-28988, which is a patch bypass of the exploited CVE-2024-28986. The post SolarWinds Makes Third Attempt at Patching Exploited Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

SolarWinds Makes Third Attempt at Patching Exploited Vulnerability Read More »

Security and privacy concerns challenge public sector’s efforts to modernize

access control, Artificial Intelligence, cybersecurity, data security, digital transformation, hybrid IT, News, report, SolarWinds /

Security and privacy concerns challenge public sector’s efforts to modernize 2025-02-21 at 18:01 By Help Net Security For most public sector organizations, digital transformation is a work in progress, with the complexity of integrating new systems and privacy and security concerns remaining key barriers, according to a report by SolarWinds. Only 6% of respondents report

Security and privacy concerns challenge public sector’s efforts to modernize Read More »

SolarWinds Taken Private in $4.4 Billion Turn/River Capital Acquisition

Acquisition, M&A Tracker, private equity, SolarWinds /

SolarWinds Taken Private in $4.4 Billion Turn/River Capital Acquisition 2025-02-10 at 12:43 By Eduard Kovacs SolarWinds will become a privately held company following its acquisition by Turn/River Capital for $4.4 billion in cash.  The post SolarWinds Taken Private in $4.4 Billion Turn/River Capital Acquisition appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

SolarWinds Taken Private in $4.4 Billion Turn/River Capital Acquisition Read More »

SEC fines tech companies for misleading SolarWinds disclosures

Avaya, Check Point, Compliance, cyber risk, Don't miss, Mimecast, News, SolarWinds, Unisys /

SEC fines tech companies for misleading SolarWinds disclosures 2024-10-25 at 15:07 By Help Net Security The Securities and Exchange Commission charged four current and former public companies – Unisys Corp., Avaya Holdings Corp., Check Point Software Technologies Ltd, and Mimecast Limited – with making materially misleading disclosures regarding cybersecurity risks and intrusions. The SEC also

SEC fines tech companies for misleading SolarWinds disclosures Read More »

SolarWinds Releases Patches for High-Severity Vulnerabilities

SolarWinds, vulnerability /

SolarWinds Releases Patches for High-Severity Vulnerabilities 2024-10-17 at 16:46 By daksh sharma Overview SolarWinds has issued an important security update advisory outlining the latest vulnerability patches released for its products. This advisory provides insights into recently disclosed vulnerabilities affecting the SolarWinds range and emphasizes the need for organizations to take immediate action to protect their

SolarWinds Releases Patches for High-Severity Vulnerabilities Read More »

PoC for critical SolarWinds Web Help Desk vulnerability released (CVE-2024-28987)

CVE, Don't miss, education, enterprise, Government, Horizon3.ai, Hot stuff, MSP, News, PoC, SMBs, SolarWinds, vulnerability /

PoC for critical SolarWinds Web Help Desk vulnerability released (CVE-2024-28987) 2024-09-25 at 17:17 By Zeljka Zorz Details about and proof-of-concept (PoC) exploit code for CVE-2024-28987, a recently patched SolarWinds Web Help Desk (WHD) vulnerability that could be exploited by unauthenticated attackers to remotely read and modify all help desk ticket details, are now public. “When

PoC for critical SolarWinds Web Help Desk vulnerability released (CVE-2024-28987) Read More »

SolarWinds Patches Critical Vulnerability in Access Rights Manager

SolarWinds, Vulnerabilities, vulnerability /

SolarWinds Patches Critical Vulnerability in Access Rights Manager 2024-09-16 at 12:31 By Ionut Arghire SolarWinds has announced patches for a critical-severity remote code execution vulnerability in Access Rights Manager. The post SolarWinds Patches Critical Vulnerability in Access Rights Manager appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

SolarWinds Patches Critical Vulnerability in Access Rights Manager Read More »

Another critical SolarWinds Web Help Desk bug fixed (CVE-2024-28987)

CVE, Don't miss, enterprise, Hot stuff, MSP, News, SMBs, SolarWinds, vulnerability /

Another critical SolarWinds Web Help Desk bug fixed (CVE-2024-28987) 2024-08-23 at 13:31 By Zeljka Zorz A week after SolarWinds released a fix for a critical code-injection-to-RCE vulnerability (CVE-2024-28986) in Web Help Desk (WHD), another patch for another critical flaw (CVE-2024-28987) in the company’s IT help desk solution has been pushed out. CVE-2024-28987 CVE-2024-28987 stems from

Another critical SolarWinds Web Help Desk bug fixed (CVE-2024-28987) Read More »

SolarWinds Leaks Credentials in Hotfix for Exploited Web Help Desk Flaw

exploited, patch, SolarWinds, Vulnerabilities /

SolarWinds Leaks Credentials in Hotfix for Exploited Web Help Desk Flaw 2024-08-23 at 11:17 By Ionut Arghire SolarWinds has issued a Web Help Desk hotfix to remove hardcoded credentials from last week’s hotfix for a critical-severity vulnerability. The post SolarWinds Leaks Credentials in Hotfix for Exploited Web Help Desk Flaw appeared first on SecurityWeek. This

SolarWinds Leaks Credentials in Hotfix for Exploited Web Help Desk Flaw Read More »

SolarWinds Web Help Desk Vulnerability Possibly Exploited as Zero-Day

Featured, SolarWinds, Vulnerabilities, Zero-Day /

SolarWinds Web Help Desk Vulnerability Possibly Exploited as Zero-Day 2024-08-16 at 13:17 By Ionut Arghire The US cybersecurity agency CISA warns that a recent SolarWinds Web Help Desk vulnerability has been exploited in the wild. The post SolarWinds Web Help Desk Vulnerability Possibly Exploited as Zero-Day appeared first on SecurityWeek. This article is an excerpt

SolarWinds Web Help Desk Vulnerability Possibly Exploited as Zero-Day Read More »

Scroll to Top