CVE-2025-40553

CRITICAL

SolarWinds Web Help Desk < 2026.1 - Unauthenticated Remote Code Execution via Untrusted Data Deserialization

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-40553. PoCs published by watchtowrlabs.

AI-analyzed exploit summary This repository contains a functional exploit PoC for CVE-2025-40552 (authentication bypass) and CVE-2025-40553 (RCE) in SolarWinds Web Help Desk. The script demonstrates the vulnerability chain by bypassing authentication and executing arbitrary commands via deserialization of Apache Commons DBCP2 BasicDataSource.

Description

SolarWinds Web Help Desk was found to be susceptible to an untrusted data deserialization vulnerability that could lead to remote code execution, which would allow an attacker to run commands on the host machine. This could be exploited without authentication.

Exploits (1)

github WORKING POC 4 stars

by watchtowrlabs · pythonpoc

https://github.com/watchtowrlabs/watchTowr-vs-SolarWinds-WebHelpDesk-CVE-2025-40552-CVE-2025-40553

View Code ZIP pw:eip

This repository contains a functional exploit PoC for CVE-2025-40552 (authentication bypass) and CVE-2025-40553 (RCE) in SolarWinds Web Help Desk. The script demonstrates the vulnerability chain by bypassing authentication and executing arbitrary commands via deserialization of Apache Commons DBCP2 BasicDataSource.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: SolarWinds Web Help Desk < 2026.1

No auth needed

Prerequisites: Network access to the target SolarWinds Web Help Desk instance · PostgreSQL database accessible on the target system

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter T1203 - Exploitation for Client Execution

devstral-2 · analyzed May 01, 2026 Full analysis →

References (3)

Core 3

Core References

Exploit, Third Party Advisory

https://github.com/watchtowrlabs/watchTowr-vs-SolarWinds-WebHelpDesk-CVE-2025-40552-CVE-2025-40553/blob/main/watchTowr-vs-SolarWinds-WebHelpDesk-CVE-2025-40552-CVE-2025-40553.py

View Exploit ZIP pw:eip

Release Notes release-notes

https://documentation.solarwinds.com/en/success_center/whd/content/release_notes/whd_2026-1_release_notes.htm

Vendor Advisory

https://www.solarwinds.com/trust-center/security-advisories/CVE-2025-40553

Scores

CVSS v3 9.8

EPSS 0.6039

EPSS Percentile 99.0%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact total

Details

CWE

CWE-502

Status published

Products (1)

solarwinds/web_help_desk < 2026.1

Published Jan 28, 2026

Tracked Since Feb 18, 2026