CVE-2026-28299

SolarWinds Web Help Desk is found to be affected by a denial-of-service vulnerability, which when exploited, could cause the Web Help Desk server to crash due to insufficient memory.

CVSS v3 8.2 HIGH

8.2^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 4.2

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact LOW

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://documentation.solarwinds.com/en/success_center/whd/content/release_notes/whd_2026-2_release_notes.htm	Release Notes
https://www.solarwinds.com/trust-center/security-advisories/CVE-2026-28299	Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:solarwinds:web_help_desk:*:*:*:*:*:*:*:*

History

04 Jun 2026, 18:39

Type	Values Removed	Values Added
CPE		cpe:2.3:a:solarwinds:web_help_desk::::::::
First Time		Solarwinds Solarwinds web Help Desk
References	~~() https://documentation.solarwinds.com/en/success_center/whd/content/release_notes/whd_2026-2_release_notes.htm -~~	() https://documentation.solarwinds.com/en/success_center/whd/content/release_notes/whd_2026-2_release_notes.htm - Release Notes
References	~~() https://www.solarwinds.com/trust-center/security-advisories/CVE-2026-28299 -~~	() https://www.solarwinds.com/trust-center/security-advisories/CVE-2026-28299 - Vendor Advisory

02 Jun 2026, 20:16

Type	Values Removed	Values Added
New CVE

Information

Published : 2026-06-02 20:16

Updated : 2026-06-04 18:39

NVD link : CVE-2026-28299

Mitre link : CVE-2026-28299

CVE.ORG link : CVE-2026-28299

JSON object : View

Products Affected

solarwinds

web_help_desk

CWE

CWE-770

Allocation of Resources Without Limits or Throttling

8.2 /10