Home/Tag/Solarwinds

Solarwinds

5 articles tagged with "Solarwinds"

Vulnerabilities4 min read

SolarWinds Patches Four Critical Serv-U Flaws With Root Access

Serv-U 15.5.4 fixes four CVSS 9.1 bugs including type confusion and access control flaws. Admin access required, but file transfer platforms remain high-value targets.

Marcus ChenFeb 24, 2026

Vulnerabilities3 min read

Serv-U Type Confusion Bug Enables Privileged Code Execution

CVE-2025-40540 is a critical type confusion vulnerability in SolarWinds Serv-U with CVSS 9.1. Attackers with admin access can execute arbitrary code.

Marcus ChenFeb 24, 2026

Vulnerabilities4 min read

Three Days to Patch: CISA's Urgent SolarWinds Deadline Explained

Federal agencies face an aggressive Friday deadline to patch CVE-2025-40551 in SolarWinds Web Help Desk. The compressed timeline signals serious active exploitation.

Marcus ChenFeb 4, 2026

Vulnerabilities3 min read

CISA Adds SolarWinds, Sangoma, GitLab Flaws to KEV

Four actively exploited vulnerabilities added to CISA's catalog including SolarWinds Web Help Desk deserialization flaw with CVSS 9.8. Federal agencies have until February 6 to patch.

Marcus ChenFeb 4, 2026

Vulnerabilities3 min read

SolarWinds Web Help Desk Gets Emergency Patches for Four Critical Flaws

Deserialization bugs and authentication bypasses enable unauthenticated RCE. Attackers have targeted WHD vulnerabilities before.

Marcus ChenJan 30, 2026