CVE-2025-26399: SolarWinds Web Help Desk Deserialization of Untrusted Data

SolarWinds Web Help Desk Deserialization of Untrusted Data Vulnerability. SolarWinds Web Help Desk contain a deserialization of untrusted data vulnerability in AjaxProxy that could allow an attacker to run commands on the host machine.

• CISA KEV-listed (remediation due 2026-03-12)
• EPSS 30.5% (96.8% percentile)

Detection rules

• Suspicious Child Process of SolarWinds WebHelpDesk high

Browse the CVE database

Read the full analysis on IntelFusions