Microsoft links SolarWinds WHD exploits to RCE, lateral movement, and domain compromise in multi-stage attacks.

We are seeing exploitation of SolarWinds Web Help Desk via CVE‑2025‑40551 and CVE‑2025‑40536 that can lead to domain compromise; here is how to patch, hunt, and mitigate now.

According to security researchers, attackers are currently exploiting critical malware vulnerabilities in SolarWinds Web Help ...

The four critical flaws could be exploited without authentication for remote code execution or authentication bypass. First in line is CVE-2025-40551 (CVSS score of 9.8), a critical flaw described as ...

Microsoft's Defender Security Research Team has observed threat actors actively exploiting internet-exposed SolarWinds Web Help Desk instances in multi-stage intrusions that led to lateral movement ...

SolarWinds has released security updates to address multiple security vulnerabilities impacting SolarWinds Web Help Desk, including four critical vulnerabilities that could result in authentication ...

SolarWinds patched multiple critical security flaws in its Web Help Desk software on January 29, 2026, after researchers found severe vulnerabilities enabling total system takeover. Among the six ...

So many CVEs, so little time Digital intruders exploited buggy SolarWinds Web Help Desk (WHD) instances in December to break into victims' IT environments, move laterally, and steal high-privilege ...

Attacks targeting SolarWinds Web Help Desk instances in December 2025 might have exploited recently patched vulnerabilities as zero-days.

Researchers at Huntress and Microsoft have shared findings from their analysis of a new SolarWinds Web Help Desk vulnerability.

Multiple software vulnerabilities threaten systems with the SolarWinds Web Help Desk. If attackers successfully exploit the vulnerabilities, they could, in the worst case, completely compromise ...