CVE-2024-28988 | SolarWinds Web Help Desk up to 12.8.3 Hotfix 2 AjaxProxy deserialization

Inserito da Angelo Barbosa | Giu 18, 2025 | CVE

A vulnerability classified as very critical was found in SolarWinds Web Help Desk up to 12.8.3 Hotfix 2. Affected by this vulnerability is an unknown functionality of the component AjaxProxy. The manipulation leads to deserialization.

This vulnerability is known as CVE-2024-28988. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-28988 | SolarWinds Web Help Desk up to 12.8.3 Hotfix 2 AjaxProxy deserialization

Post correlati

CVE-2022-4961 | Weitong Mall 1.0.0 OrderDao.xml sidx/order sql injection (I5XC79)

CVE-2024-31170 | Open Networking Foundation libfluid 0.1.0 unpack out-of-bounds

CVE-2024-20284 | Cisco NX-OS up to 7.3(11)N1(1a) Python Interpreter protection mechanism (cisco-sa-nxos-psbe-ce-YvbTn5du)

CVE-2024-36140 | Siemens OZW672/OZW772 up to 5.1 cross site scripting (ssa-230445)