CNNVD-202601-4806 Information

CNNVD ID

CNNVD-202601-4806

Related CVE

CVE-2025-40536

• CNNVD Published: 2026-01-28

Description (Chinese)

SolarWinds Web Help Desk是美国SolarWinds公司的一套服务台和资产管理软件。该软件支持集中式知识库、IT资产管理、项目和任务管理等功能。 SolarWinds Web Help Desk存在安全漏洞，该漏洞源于安全控制绕过，可能导致未经验证的攻击者访问某些受限功能。

Description (English)

SolarWinds Web Help Desk is a service desk and asset management software for SolarWinds in the United States. The software supports functions such as a centralized knowledge base, IT asset management, project and task management. SolarWinds Web Help Desk has a security loophole, which stems from the circumvention of security controls and may lead to unauthorized attackers visiting certain restricted functions.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

SolarWinds

Published

2026-01-28

Last Modified

2026-02-24

References

https://documentation.solarwinds.com/en/success_center/whd/content/release_notes/whd_2026-1_release_notes.htm https://www.solarwinds.com/trust-center/security-advisories/CVE-2025-40536

Patch

https://documentation.solarwinds.com/en/success_center/whd/content/release_notes/whd_2026-1_release_notes.htm