Serial number: AV26-063
Date: January 28, 2026
Date: February 13, 2026
On January 28, 2026, SolarWinds published security advisories to address critical vulnerabilities in the following products:
- SolarWinds Web Help Desk – versions prior to 2026.1
- SolarWinds Web Help Desk – version 12.8.8 HF1 and prior
Update 1
On February 3, 2026, Cybersecurity and Infrastructure Security Agency (CISA) added CVE-2025-40551 to their Known Exploited Vulnerabilities (KEV) Database.
Update 2
On February 12, 2026, Cybersecurity and Infrastructure Security Agency (CISA) added CVE-2025-40536 to their Known Exploited Vulnerabilities (KEV) Database.
The Cyber Centre encourages users and administrators to review the provided web link and apply the necessary updates.