COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2025-26399

CVE-2025-26399

Severity
high · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2026-03-09
Reference
https://nvd.nist.gov/vuln/detail/CVE-2025-26399
⚡ RCE ⌖ exploited in the wild shame 85/100 rceexploited-in-wildransomwaresupply-chainunpatchednegligence

SolarWinds Web Help Desk allows remote command execution via untrusted data deserialization in AjaxProxy.

This vulnerability enables attackers to execute arbitrary commands on compromised systems, posing a severe risk to DIB organizations relying on SolarWinds infrastructure. Immediate patching and network segmentation are critical to prevent unauthorized access and potential data exfiltration.

Shame score — A critical RCE vulnerability in a widely deployed product that is actively exploited in the wild, indicating a failure to patch or secure the supply chain.

Players implicated

SolarWinds · vendorWeb Help Desk · product

Description

SolarWinds Web Help Desk contain a deserialization of untrusted data vulnerability in AjaxProxy that could allow an attacker to run commands on the host machine.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.