August 15, 2024 at 09:21AM
SolarWinds has released a hotfix for a critical-severity vulnerability in Web Help Desk, allowing remote attackers to execute arbitrary code. The CVE-2024-28986 affects versions 12.4 to 12.8, requiring the installation of version 12.8.3.1813. SolarWinds advises customers to upgrade, download the hotfix, and apply it, providing detailed installation instructions in their advisory.
Key takeaways from the meeting notes:
– SolarWinds has released a hotfix to address a critical-severity vulnerability in Web Help Desk (WHD) tracked as CVE-2024-28986 with a CVSS score of 9.8.
– The vulnerability could allow attackers to execute arbitrary code on the host machine.
– The hotfix applies to Web Help Desk versions 12.4 to 12.8, but requires version 12.8.3.1813 to be installed.
– SolarWinds recommends that all customers upgrade to Web Help Desk 12.8.3, download the hotfix from the SolarWinds Customer Portal, and install it as soon as possible.
– Detailed installation instructions for the hotfix are available in SolarWinds’ advisory.
– SolarWinds recommends all Web Help Desk customers apply the patch, which is now available.