Multiple vulnerabilities have been identified in SolarWinds Web Help Desk that could allow a remote attacker to execute code, escalate privileges, and bypass security restrictions. Users are advised to update to version 12.8.8 HF1 or later to mitigate these risks.
Multiple vulnerabilities were identified in SolarWinds Web Help Desk. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution, elevation of privilege and security restriction bypass on the targeted system. Impact Remote Code Execution Security Restriction Bypass Elevation of Privilege System / Technologies affected SolarWinds Web Help Desk 12.8.8 HF1 and all previous versions Solutions Before installation of the software, please visit the software vendor web-site for more details. Apply fixes issued by the vendor: Update to SolarWinds Web Help Desk version 12.8.8 HF1 or later