CNNVD-202601-4802 Information

Jan 28, 2026 cve

CNNVD ID

CNNVD-202601-4802

CVE-2025-40554

CNNVD Published: 2026-01-28

Description (Chinese)

SolarWinds Web Help Desk是美国SolarWinds公司的一套服务台和资产管理软件。该软件支持集中式知识库、IT资产管理、项目和任务管理等功能。 SolarWinds Web Help Desk存在安全漏洞，该漏洞源于身份验证绕过，可能导致攻击者调用Web Help Desk内的特定操作。

Description (English)

SolarWinds Web Help Desk is a service desk and asset management software for SolarWinds in the United States. The software supports functions such as a centralized knowledge base, IT asset management, project and task management. There is a security loophole in SolarWinds Web Help Desk, which stems from a circumvention of identification, which could lead to the attackers calling for specific operations within Web Help Desk.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

SolarWinds

Published

2026-01-28

Last Modified

2026-02-24

References

https://documentation.solarwinds.com/en/success_center/whd/content/release_notes/whd_2026-1_release_notes.htm https://www.solarwinds.com/trust-center/security-advisories/CVE-2025-40554

Patch

https://documentation.solarwinds.com/en/success_center/whd/content/release_notes/whd_2026-1_release_notes.htm

Share on: