#solarwinds

[ follow ]
#web-help-desk #remote-code-execution #cybersecurity #authentication-bypass #sec #patch-bypass #cve-2025-40551
Information security
fromThe Hacker News
8 hours ago

CISA Adds Actively Exploited SolarWinds Web Help Desk RCE to KEV Catalog

A critical untrusted-data deserialization vulnerability in SolarWinds Web Help Desk (CVE-2025-40551) enables unauthenticated remote code execution and is actively exploited.
#web-help-desk
more#web-help-desk
#sec
more#sec
fromTechzine Global
2 months ago

SolarWinds lawsuit dropped: CISOs can breathe a sigh of relief

A lawsuit brought by the US Securities & Exchange Commission (SEC) against SolarWinds has been dropped. The legal fire was also directed at the company's CISO, Timothy G. Brown. Brown's alleged personal responsibility will now not be determined in court. It therefore appears that CISOs have less to fear from the law than previously thought. CISOs are responsible for securing their company's IT infrastructure.
Information security
Information security
fromNextgov.com
2 months ago

SEC to drop high-profile SolarWinds hack lawsuit

The SEC dismissed its lawsuit accusing SolarWinds and its CISO of misleading investors about cybersecurity weaknesses related to the Sunburst breach.
Information security
fromTheregister
2 months ago

SEC bails on SolarWinds lawsuit

The SEC has dismissed its civil enforcement lawsuit against SolarWinds and its CISO over alleged misleading security practices tied to the 2020 SUNBURST supply-chain attack.
[ Load more ]