Primary

Context

SolarWinds Web Help Desk Authentication Bypass Vulnerability

Vulnerability

Patched

An authentication bypass vulnerability has been identified in SolarWinds Web Help Desk. This vulnerability allows malicious actors to perform actions and access methods that should require authentication. The issue arises from a flaw in the application's authentication mechanism, which can be exploited to bypass security controls and gain unauthorized access to certain functionalities.

Impact

Exploitation of this vulnerability could lead to unauthorized access to actions and methods within the Web Help Desk application that are normally protected by authentication.

Remediation

Users can upgrade to SolarWinds Web Help Desk version 2026.1, which addresses this vulnerability. Instructions for downloading the update are available on the SolarWinds website and through the Customer Portal.

Added: Jan 28, 2026, 8:23 AM

Updated: Jan 28, 2026, 8:23 AM

Vulnerability Rating

Custom Algorithm

spread

5.0

impact

5.0

exploitability

7.4

remediation

7.7

relevance

2.4

threat

0.2

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.0

impact

5.0

exploitability

7.4

remediation

7.7

relevance

2.4

threat

0.2

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

SolarWinds Web Help Desk Authentication Bypass Vulnerability

Vulnerability

Impact

Remediation

Affected Products

SolarWinds Web Help Desk

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating