Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home Alerts

CISA Warns of Critical SolarWinds Flaw

October 16, 2024
Reading Time: 2 mins read
in Alerts
CISA Warns of Critical SolarWinds Flaw

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical alert regarding the active exploitation of a severe vulnerability in SolarWinds Web Help Desk (WHD) software. This vulnerability, tracked as CVE-2024-28987, carries a high-risk CVSS score of 9.1 and relates to the use of hard-coded credentials within the software. The flaw allows remote, unauthenticated attackers to gain unauthorized access to sensitive internal functions and make modifications to the help desk system. CISA added the vulnerability to its Known Exploited Vulnerabilities (KEV) catalog, stressing that immediate action is necessary to mitigate the risk of further exploitation.

The vulnerability has particularly serious implications for organizations that rely on SolarWinds WHD for managing IT service requests. According to cybersecurity researcher Zach Hanley from Horizon3.ai, the flaw allows attackers to remotely access and alter all help desk ticket details, which often contain highly sensitive information such as password reset requests and shared service account credentials. This makes the vulnerability especially dangerous, as the compromised tickets can expose key internal processes and data, potentially enabling attackers to escalate their privileges within affected systems. Although details of the specific methods of exploitation remain unclear, evidence of ongoing attacks indicates that threat actors are actively targeting organizations using this software.

SolarWinds first disclosed the vulnerability in August 2024, but it quickly became a major focus for cybersecurity professionals when Horizon3.ai released additional technical details in September. These disclosures outlined how attackers could exploit the hard-coded credentials to access critical functionality without authentication. The vulnerability’s emergence follows a similar critical flaw in SolarWinds WHD, tracked as CVE-2024-28986, which was flagged by CISA two months earlier. These vulnerabilities highlight ongoing security challenges in SolarWinds’ software, raising concerns about the robustness of the company’s cybersecurity practices.

In light of the active exploitation of CVE-2024-28987, CISA has issued a directive requiring all Federal Civilian Executive Branch (FCEB) agencies to apply the latest security patches—specifically, version 12.8.3 Hotfix 2 or later—by November 5, 2024. This mandate aims to secure government networks against unauthorized access and prevent further data breaches. CISA also strongly urges other organizations using SolarWinds WHD to immediately implement these patches to safeguard their systems. As cyberattacks on service desk software continue to grow in frequency and sophistication, swift action is necessary to avoid costly and damaging incidents of data exposure or manipulation. Organizations are advised to remain vigilant, regularly monitor security advisories, and ensure that they have strong defense mechanisms in place to protect their critical infrastructure from exploitation.

Reference:
  • CISA Issues Warning on Active Exploitation of SolarWinds Web Help Desk Flaw
Tags: CISACyber AlertsCyber Alerts 2024Cyber threatsOctober 2024SolarWindsVulnerabilities
ADVERTISEMENT

Related Posts

BadIIS Malware Spreads Via SEO Poisoning

Hackers Target AWS and Steal Credentials

September 24, 2025
BadIIS Malware Spreads Via SEO Poisoning

SonicWall SMA100 Update Removes Rootkit

September 24, 2025
BadIIS Malware Spreads Via SEO Poisoning

BadIIS Malware Spreads Via SEO Poisoning

September 24, 2025
FBI Issues Warning on Spoofed IC3 Website

FBI Issues Warning on Spoofed IC3 Website

September 22, 2025
FBI Issues Warning on Spoofed IC3 Website

Infostealer Hits macOS Users Widely

September 22, 2025
FBI Issues Warning on Spoofed IC3 Website

SonicWall Warns Reset After Exposure

September 22, 2025

Latest Alerts

Hackers Target AWS and Steal Credentials

SonicWall SMA100 Update Removes Rootkit

BadIIS Malware Spreads Via SEO Poisoning

SonicWall Warns Reset After Exposure

Infostealer Hits macOS Users Widely

FBI Issues Warning on Spoofed IC3 Website

Subscribe to our newsletter

    Latest Incidents

    Boyd Gaming Reports Data Breach After Attack

    Morrisroe UK Company Hit By Cyber Attack

    GeoServer Flaw Breaches US Agency Network

    Steam Game Steals Streamer Donations

    Ransomware Gang Hacks Spartanburg County

    Cyberattack Hits Europe Airport Systems

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial