Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / solarwinds

solarwinds

320 tracked vulnerabilities.

CVE-2026-28298 MEDIUM

SolarWinds Observability Self-Hosted Stored Cross-Site Scripting Vulnerability

CVE-2026-28297 MEDIUM

SolarWinds Observability Self-Hosted Stored Cross-Site Scripting Vulnerability

CVE-2025-40541 CRITICAL

SolarWinds Serv-U < 15.5.4 - Authenticated Insecure Direct Object Reference

CVE-2025-40540 CRITICAL

SolarWinds Serv-U < 15.5.4 - Authenticated Remote Code Execution via Type Confusion

CVE-2025-40539 CRITICAL

SolarWinds Serv-U < 15.5.4 - Authenticated Remote Code Execution via Type Confusion

CVE-2025-40538 CRITICAL

SolarWinds Serv-U < 15.5.4 - Authenticated Privilege Escalation via Admin User Creation

CVE-2025-40554 CRITICAL NUCLEI

SolarWinds Web Help Desk < 2026.1 - Authentication Bypass

CVE-2025-40553 CRITICAL

SolarWinds Web Help Desk < 2026.1 - Unauthenticated Remote Code Execution via Untrusted Data Deserialization

CVE-2025-40552 CRITICAL NUCLEI

SolarWinds Web Help Desk < 2026.1 - Authentication Bypass

CVE-2025-40551 CRITICAL KEVNUCLEI

SolarWinds Web Help Desk < 2026.1 - Unauthenticated Remote Code Execution via Untrusted Data Deserialization

CVE-2025-40537 HIGH

SolarWinds Web Help Desk < 2026.1 - Use of Hard-coded Credentials

CVE-2025-40536 HIGH KEVNUCLEI

SolarWinds Web Help Desk unauthenticated RCE

CVE-2025-40549 CRITICAL

SolarWinds Serv-U < 15.5.3 - Authenticated Path Traversal

CVE-2025-40548 CRITICAL

SolarWinds Serv-U < 15.5.3 - Authenticated Privilege Escalation

CVE-2025-40547 CRITICAL

SolarWinds Serv-U < 15.5.3 - Authenticated Remote Code Execution

CVE-2025-40545 MEDIUM

SolarWinds Observability Self-Hosted < 2025.4.1 - Authenticated Open Redirect via Unsanitized URL

CVE-2025-26391 MEDIUM

SolarWinds Observability Self-Hosted < 2025.4.1 - Authenticated Stored Cross-Site Scripting in User-Created URL Fields

CVE-2025-26392 MEDIUM

SolarWinds Observability Self-Hosted < 2025.4 - Authenticated SQL Injection

CVE-2025-26399 CRITICAL KEV

SolarWinds Web Help Desk < 12.8.6 - Unauthenticated Remote Code Execution via AjaxProxy Deserialization

CVE-2025-26398 MEDIUM

SolarWinds Database Performance Analyzer < 2025.3 - Use of Hard-coded Cryptographic Key

CVE-2025-26400 MEDIUM

SolarWinds Web Help Desk < 12.8.7 - XML External Entity Injection

CVE-2025-26397 HIGH

SolarWinds Observability Self-Hosted < 2025.2.1 - Privilege Escalation via Untrusted Deserialization

CVE-2025-26395 HIGH

SolarWinds Observability Self-Hosted < 2025.2 - Authenticated Stored Cross-Site Scripting via URL Field

CVE-2025-26394 MEDIUM

SolarWinds Observability Self-Hosted < 2025.2 - Authenticated Open Redirect

CVE-2025-26396 HIGH

SolarWinds Dameware - Privilege Escalation

Page 1 of 13 Next

Products

orion_platform 49 serv-u 39 access_rights_manager 32 solarwinds_platform 27 serv-u_file_server 20 web_help_desk 20 serv-u_ftp_server 11 database_performance_analyzer 10 n-central 9 orion_network_performance_monitor 9 network_performance_monitor 8 observability_self-hosted 8 dameware_mini_remote_control 7 network_configuration_manager 7 tftp_server 6 webhelpdesk 6 kiwi_syslog_server 5 log_and_event_manager 5 orion_web_performance_monitor 4 security_event_manager 4 log_\&_event_manager 3 patch_manager 3 server_and_application_monitor 3 storage_manager 3 virtualization_manager 3 SolarWinds Observability Self-Hosted 2 ftp_voyager 2 kiwi_cattools 2 netpath 2 serv-u_mft_server 2

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy