CVE-2026-28299
HIGHSolarWinds Web Help Desk Denial-of-Service Vulnerability
Title source: cnaDescription
SolarWinds Web Help Desk is found to be affected by a denial-of-service vulnerability, which when exploited, could cause the Web Help Desk server to crash due to insufficient memory.
References (2)
Core 2
Core References
Vendor Advisory vendor-advisory
https://www.solarwinds.com/trust-center/security-advisories/CVE-2026-28299
Release Notes release-notes
https://documentation.solarwinds.com/en/success_center/whd/content/release_notes/whd_2026-2_release_notes.htm
Scores
CVSS v3
8.2
EPSS
0.0039
EPSS Percentile
30.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-770
Status
published
Products (2)
SolarWinds/Web Help Desk
2026.1 and all previous versions
solarwinds/web_help_desk
< 2026.2
Published
Jun 02, 2026
Tracked Since
Jun 03, 2026