CVE Watchtower

CVE-2025-40551NVD

Description

SolarWinds Web Help Desk was found to be susceptible to an untrusted data deserialization vulnerability that could lead to remote code execution, which would allow an attacker to run commands on the host machine. This could be exploited without authentication.

Severity Level

CRITICAL (9.8)

Published Date

28/01/2026

Last Modified

04/02/2026

Exploitation Status

????

References

https://documentation.solarwinds.com/en/success_center/whd/content/release_notes/whd_2026-1_release_notes.htm
https://www.solarwinds.com/trust-center/security-advisories/CVE-2025-40551
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-40551