What is the CVSS score of CVE-2025-40536?

CVE-2025-40536 has a CVSS 3.1 base score of 8.1 (High). CVSS vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 69.1%.

Which versions of Web Help Desk are affected by CVE-2025-40536?

SolarWinds Web Help Desk contains an authentication bypass vulnerability actively being exploited in the wild, allowing unauthenticated attackers to access restricted functionality without…

Is there a public PoC exploit available for CVE-2025-40536?

Yes, a public proof-of-concept exploit is available for CVE-2025-40536. Prioritise patching immediately. EPSS: 69.1%.

How to fix or mitigate CVE-2025-40536?

Within 24 hours: Identify all SolarWinds Web Help Desk instances in your environment and isolate them from untrusted networks; enable detailed logging and monitor for suspicious access patterns. Within 7 days: Contact SolarWinds support for interim guidance; implement network segmentation to restrict access to help desk systems; conduct forensic analysis to determine if exploitation has occurred. Within 30 days: Deploy compensating controls (WAF rules, IP whitelisting); establish timeline with SolarWinds for patch availability; prepare upgrade plan upon patch release.

Web Help Desk CVE-2025-40536

HIGH

Protection Mechanism Failure (CWE-693)

2026-01-28 psirt@solarwinds.com

Authentication Bypass Web Help Desk

8.1

CVSS 3.1 · NVD

Severity by source

NVD PRIMARY

8.1 HIGH

AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

High

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Mar 12, 2026 - 21:54 vuln.today

Added to CISA KEV

Feb 13, 2026 - 14:03 cisa

CISA KEV

CVE Published

Jan 28, 2026 - 08:16 nvd

HIGH 8.1

DescriptionCVE.org

SolarWinds Web Help Desk was found to be susceptible to a security control bypass vulnerability that if exploited, could allow an unauthenticated attacker to gain access to certain restricted functionality.

AnalysisAI

SolarWinds Web Help Desk contains a security control bypass vulnerability (CVE-2025-40536) that allows unauthenticated attackers to access restricted functionality. With EPSS 69% and KEV listing, this CVSS 8.1 vulnerability is particularly concerning given SolarWinds' history of being targeted in supply chain attacks and the sensitive IT service data typically stored in help desk systems.

Technical ContextAI

Web Help Desk's security controls can be circumvented by unauthenticated attackers to access functionality that should require administrative privileges. The specific bypass mechanism involves manipulation of request parameters or paths that the application's authorization framework fails to properly validate. Given that help desk systems contain IT asset inventories, ticket histories with sensitive information, and often stored credentials, this represents significant data exposure.

RemediationAI

Apply SolarWinds security update immediately. Restrict Web Help Desk access to internal networks only. Review access logs for unauthorized access patterns. Audit help desk tickets for exposed credentials and rotate any found. Consider the sensitivity of data in WHD when planning remediation priority.

CVE-2025-40536 vulnerability details – vuln.today

Back

Web Help Desk CVE-2025-40536

Severity by source

CVSS VectorNVD

Lifecycle Timeline

DescriptionCVE.org

AnalysisAI

Technical ContextAI

RemediationAI

Share

External POC / Exploit Code