Security Control Bypass in SolarWinds Web Help Desk
CVE-2025-40536

8.1HIGH

Key Information:

Vendor: Solarwinds
Status: Web Help Desk
Vendor: CVE Published:; 28 January 2026

Badges

💰 Ransomware👾 Exploit Exists🟣 EPSS 66%🦅 CISA Reported📰 News Worthy

What is CVE-2025-40536?

SolarWinds Web Help Desk is vulnerable to a security control bypass that enables an unauthenticated attacker to access restricted functionalities. If exploited, this flaw could compromise the integrity of the system, potentially allowing malicious actions without proper authentication. Addressing this vulnerability promptly is crucial for maintaining system security and protecting sensitive information.

CISA has reported CVE-2025-40536

CISA provides regional cyber and physical services to support security and resilience across the United States. CISA monitor the most dangerious vulnerabilities and have identifed CVE-2025-40536 as being exploited but is not known by the CISA to be used in ransomware campaigns. This is subject to change at pace as recent news articles suggest the vulnerability is being used by ransomware groups.

The CISA's recommendation is: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Web Help Desk 12.8.8 HF1 and below

News Articles

The Record from Recorded Future News

CVE-2025-40536

CISA orders federal agencies to patch exploited SolarWinds, Apple, Microsoft bugs within weeks

The Cybersecurity and Infrastructure Security Agency (CISA) added ten new vulnerabilities to its catalog of exploited bugs this week, forcing all federal civilian agencies to resolve the issues by the first week of March.

1 week ago