CVE-2025-40554

Critical

SolarWinds Web Help Desk was found to be susceptible to an authentication bypass vulnerability that, if exploited, could allow an attacker…

SolarWinds·CWE-1390·Published 2026-01-28

CVSS

9.8

EPSS

0.57

KEV

Exploits

cve.orgen

187 chars

SolarWinds Web Help Desk was found to be susceptible to an authentication bypass vulnerability that, if exploited, could allow an attacker to invoke specific actions within Web Help Desk.

NVDen

187 chars

SolarWinds Web Help Desk was found to be susceptible to an authentication bypass vulnerability that, if exploited, could allow an attacker to invoke specific actions within Web Help Desk.

NVDes

211 chars

SolarWinds Web Help Desk se encontró que era susceptible a una vulnerabilidad de omisión de autenticación que, si se explotaba, podría permitir a un atacante invocar acciones específicas dentro de Web Help Desk.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	NVD	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
3.1	Primary	cve.org	9.8	—	—	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H