SolarWinds has urgently advised its customers to patch a critical vulnerability found in its Web Help Desk platform, identified as CVE-2024-28986. This vulnerability, discovered by Inmarsat Government researchers, involves Java deserialization and poses a serious remote code execution (RCE) risk. If exploited, it could allow attackers to execute arbitrary commands on the host machine. Although extensive testing has not confirmed unauthenticated exploitation, SolarWinds recommends patching as a precautionary measure due to the potential severity of the issue.
To mitigate the risk, SolarWinds advises all users to upgrade to Web Help Desk version 12.8.3 and install the provided hotfix. This vulnerability has been rated with a CVSS v3 score of 9.8, indicating its critical nature and the need for immediate action. SolarWinds has published detailed instructions on how to perform the upgrade and apply the hotfix, including guidance on how to uninstall the hotfix if necessary.
Users are also advised to back up their files before applying the patch to avoid any potential data loss. In addition to the vulnerability issue, SolarWinds is currently facing legal challenges related to a 2021 security breach. A US judge recently dismissed most charges brought by the SEC, which accused SolarWinds and its Chief Information Security Officer, Timothy Brown, of concealing the company’s security weaknesses and defrauding investors. The judge found that these claims were based on hindsight and speculation rather than concrete evidence. However, the court did acknowledge legitimate concerns about the effectiveness of the security controls embedded in SolarWinds’ products.
Despite these legal issues, the company remains focused on addressing the critical vulnerability in its Web Help Desk platform. SolarWinds emphasizes the importance of applying the recommended patch to protect against potential exploitation. Users are encouraged to follow the outlined patching procedures and ensure that their systems are secure by backing up important files before proceeding with the update. The company’s proactive approach aims to minimize the risk to its customers and maintain the integrity of their systems.
Reference:
- https://support.solarwinds.com/SuccessCenter/s/article/WHD-12-8-3-Hotfix-1
