Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 1:3 a.m.10 views

CVE-2024-28986

SolarWinds Web Help Desk was found to be susceptible to a Java Deserialization Remote Code Execution vulnerability that, if exploited, would allow an attacker to run commands on the host machine. While it was reported as an unauthenticated vulnerability, SolarWinds has been unable to reproduce it...

9.8CVSS10AI score0.84628EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2024/08/15 1:19 p.m.26 views

SolarWinds Releases Patch for Critical Flaw in Web Help Desk Software

SolarWinds has released patches to address a critical security vulnerability in its Web Help Desk software that could be exploited to execute arbitrary code on susceptible instances. The flaw, tracked as CVE-2024-28986 CVSS score: 9.8, has been described as a deserialization bug. "SolarWinds Web...

9.8CVSS10AI score0.84628EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/08/15 12:0 a.m.27 views

SolarWinds Web Help Desk < 12.8.3 HF 1 Deserialization RCE

The version of SolarWinds Web Help Desk installed on the remote host is prior to 12.8.3 HF1. It is, therefore, affected by a remote code execution vulnerability, that, if exploited, would allow an attacker to run commands on the host machine. Note that Nessus has not tested for these issues but h...

9.8CVSS7AI score0.84628EPSS
Exploits0References3
Circl
Circl
added 2024/08/14 2:19 a.m.9 views

CVE-2024-28986

creationtimestamp| type| source ---|---|--- 2024-08-14 02:19:45+00:00| seen| https://t.me/cvedetector/3087 2024-08-14 09:24:18+00:00| seen| https://t.me/HackingInsights/9834 2024-08-14 19:46:35+00:00| published-proof-of-concept| Telegram/cNxbFZZdo4lIvFx4xvc0hLK4F8fRxTqcrmeBNIRfXm1RHD0 2024-08-15...

9.8CVSS7.1AI score0.84628EPSS
Exploits0References21
Vulnrichment
Vulnrichment
added 2024/08/13 10:6 p.m.36 views

CVE-2024-28986 SolarWinds Web Help Desk Java Deserialization Remote Code Execution Vulnerability

SolarWinds Web Help Desk was found to be susceptible to a Java Deserialization Remote Code Execution vulnerability that, if exploited, would allow an attacker to run commands on the host machine. While it was reported as an unauthenticated vulnerability, SolarWinds has been unable to reproduce...

9.8CVSS7.7AI score0.84628EPSS
Exploits0References2
Rows per page
Query Builder