After all, during a critical oversight, SolarWinds developers inadvertently left some hard-coded credentials inside the web help desk (WHD), opening up vulnerable scenarios to easy malicious access without deploying any backdoor.
SolarWinds Web Help Desk (WHD) is a web-based IT service management solution that streamlines help desk and IT support operations by providing a central platform for tracking and resolving service requests. Used by sectors such as healthcare, government, and financial services, a vulnerability in WHD that allows remote access could compromise sensitive data in these important industries.
A secondary desktop priority is used
The CVE-2024-28987 exploit makes this the second critical flaw in SolarWinds WHD to be exploited in the wild. Days before CVE-2024-28987 was fixed, another critical WHD bug (CVE-2024-28986) with a CVSS score of 9.8 out of 10 was reported to have allowed attackers to execute remote code execution (RCE) in vulnerable situations.
Source link