THREATOPS
THREAT OPSCVEs › CVE-2025-26399

CVE-2025-26399 — SolarWinds Web Help Desk Deserialization of Untrusted Data Vulnerability

CISA KEVExploited: confirmedSolarWinds

SolarWinds Web Help Desk contain a deserialization of untrusted data vulnerability in AjaxProxy that could allow an attacker to run commands on the host machine.

Vulnerability details

Related reporting