Unrated severityNVD Advisory· Published Jan 28, 2026· Updated Feb 26, 2026
SolarWinds Web Help Desk Authentication Bypass Vulnerability
CVE-2025-40554
Description
SolarWinds Web Help Desk was found to be susceptible to an authentication bypass vulnerability that, if exploited, could allow an attacker to invoke specific actions within Web Help Desk.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- SolarWinds/Web Help Deskv5Range: 12.8.8 HF1 and below
Patches
Vulnerability mechanics
References
2- www.solarwinds.com/trust-center/security-advisories/CVE-2025-40554mitrevendor-advisorypatch
- documentation.solarwinds.com/en/success_center/whd/content/release_notes/whd_2026-1_release_notes.htmmitrerelease-notes
News mentions
1- Buy A Help Desk, Bundle A Remote Access Solution? (SolarWinds Web Help Desk Pre-Auth RCE Chain(s))watchTowr Labs · Feb 25, 2026