CNNVD-202601-4804 Information
CNNVD ID
CNNVD-202601-4804
Related CVE
- CNNVD Published: 2026-01-28
Description (Chinese)
SolarWinds Web Help Desk是美国SolarWinds公司的一套服务台和资产管理软件。该软件支持集中式知识库、IT资产管理、项目和任务管理等功能。 SolarWinds Web Help Desk存在安全漏洞,该漏洞源于身份验证绕过,可能导致恶意行为者执行受身份验证保护的操作。
Description (English)
SolarWinds Web Help Desk is a service desk and asset management software for SolarWinds in the United States. The software supports functions such as a centralized knowledge base, IT asset management, project and task management. There is a security loophole in SolarWinds Web Help Desk, which stems from the circumvention of identification, which may lead to the performance by malicious actors of operations that are protected by identification.
Hazard Level
Low
Vulnerability Type
其他
Affected Vendor
SolarWinds
Published
2026-01-28
Last Modified
2026-02-24
References
https://documentation.solarwinds.com/en/success_center/whd/content/release_notes/whd_2026-1_release_notes.htm https://www.solarwinds.com/trust-center/security-advisories/CVE-2025-40552