Denial-of-Service Vulnerability in SolarWinds Web Help Desk
CVE-2026-28299

8.2HIGH

Key Information:

Vendor: Solarwinds
Status: Web Help Desk
Vendor: CVE Published:; 2 June 2026

What is CVE-2026-28299?

SolarWinds Web Help Desk is susceptible to a denial-of-service vulnerability, which can lead to server crashes due to inadequate memory management. When exploited, this flaw can render the Web Help Desk application unusable, affecting operational efficiency. Organizations should implement appropriate security measures and consider applying patches as outlined in vendor advisories to mitigate the risk.

Affected Version(s)

Web Help Desk 2026.1 and all previous versions

References

https://www.solarwinds.com/trust-center/security-advisori...

vendor-advisory

https://documentation.solarwinds.com/en/success_center/wh...

release-notes

CVSS V3.1

Score:

8.2

Severity:

HIGH

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 2, 2026
Vulnerability Reserved
Feb 26, 2026

Credit

Tenable

CVE-2026-28299 Data

JSON

Solarwinds

What is CVE-2026-28299?

Affected Version(s)

References

CVSS V3.1

Timeline

Credit