Detections
Analytics

SolarWinds Web Help Desk < 2026.2 Multiple Vulnerabilities

critical Nessus Plugin ID 320862

Synopsis

The remote host is missing one or more security updates.

Description

The version of SolarWinds Web Help Desk installed on the remote host is prior to 2026.2. It is, therefore, affected by multiple vulnerabilities.

 - pgAdmin versions up to 9.9 are affected by a Remote Code Execution (RCE) vulnerability that occurs when running in server mode and performing restores from PLAIN-format dump files. This issue allows attackers to inject and execute arbitrary commands on the server hosting pgAdmin, posing a critical risk to the integrity and security of the database management system and underlying data. (CVE-2025-12762)

 - pgAdmin 4 versions up to 9.9 are affected by a command injection vulnerability on Windows systems. This issue is caused by the use of shell=True during backup and restore operations, enabling attackers to execute arbitrary system commands by providing specially crafted file path input. (CVE-2025-12763)

 - pgAdmin versions up to 9.10 are affected by a Remote Code Execution (RCE) vulnerability that occurs when running in server mode and performing restores from PLAIN-format dump files. This issue allows attackers to inject and execute arbitrary commands on the server hosting pgAdmin, posing a critical risk to the integrity and security of the database management system and underlying data. (CVE-2025-13780)

 - pgAdmin <= 9.7 is affected by a Cross-Origin Opener Policy (COOP) vulnerability. This vulnerability allows an attacker to manipulate the OAuth flow, potentially leading to unauthorised account access, account takeover, data breaches, and privilege escalation. (CVE-2025-9636)

 - pgAdmin <= 9.9 is affected by an LDAP injection vulnerability in the LDAP authentication flow that allows an attacker to inject special LDAP characters in the username, causing the DC/LDAP server and the client to process an unusual amount of data DOS. (CVE-2025-12764)

 - pgAdmin <= 9.9 is affected by a vulnerability in the LDAP authentication mechanism allows bypassing TLS certificate verification. (CVE-2025-12765)

 - SolarWinds Web Help Desk is found to be affected by a denial-of-service vulnerability, which when exploited, could cause the Web Help Desk server to crash due to insufficient memory. (CVE-2026-28299)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Solution

Upgrade to SolarWinds Web Help Desk version 2026.2 or later.

See Also

http://www.nessus.org/u?b76a4afe

http://www.nessus.org/u?672103f9

Plugin Details

Severity: Critical

ID: 320862

File Name: solarwinds_web_help_desk_2026_2.nasl

Version: 1.1

Type: Combined

Agent: windows

Family: Misc.

Published: 6/12/2026

Updated: 6/12/2026

Configuration: Enable thorough checks (optional)

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: High

Score: 7.4

CVSS v2

Risk Factor: Critical

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2025-12762

CVSS v3

Risk Factor: Critical

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vulnerability Information

CPE: cpe:/a:solarwinds:web_help_desk

Required KB Items: installed_sw/Solarwinds Web Help Desk

Patch Publication Date: 6/2/2026

Vulnerability Publication Date: 6/2/2026

Reference Information

CVE: CVE-2025-12762, CVE-2025-12763, CVE-2025-12764, CVE-2025-12765, CVE-2025-13780, CVE-2025-9636, CVE-2026-28299

IAVA: 2026-A-0546