Post by @rxerium · Elektrine

Sign in
Sign up

EN

Log in Register

Modes

Overview Chat Timeline Communities Gallery Lists Friends Email Vault DNS VPN

Back to Timeline @rxerium

rxerium

@rxerium@infosec.exchange

Senior Security Researcher // rxerium.com

infosec.exchange

@rxerium@infosec.exchange

Senior Security Researcher // rxerium.com

infosec.exchange

@rxerium@infosec.exchange · Jan 29, 2026

🚨 2 critical authentication bypass and remote command execution vulnerabilities in Solarwinds WHD have been disclosed.

Vulnerability detection scripts can be found below:
CVE-2025-40552:
https://github.com/rxerium/rxerium-templates/blob/main/2025/CVE-2025-40552.yaml

CVE-2025-40554:
https://github.com/rxerium/rxerium-templates/blob/main/2025/CVE-2025-40554.yaml

At the time of writing there are no signs of active exploitation in the wild but it is strongly recommended that you patch as per Solarwind's security advisory:
https://documentation.solarwinds.com/en/success_center/whd/content/release_notes/whd_2026-1_release_notes.htm

0

0

0

Sign in to interact

Loading comments...

Company

About
Contact
FAQ

Legal

Terms of Service
Privacy Policy
VPN Policy

Email Settings

IMAP: mail.elektrine.com:993

POP3: pop3.elektrine.com:995

SMTP: mail.elektrine.com:465

SSL/TLS required

Support

support@elektrine.com
Report Security Issue

Connect

Tor Hidden Service

khav7sdajxu6om3arvglevskg2vwuy7luyjcwfwg6xnkd7qtskr2vhad.onion

© 2026 Elektrine. All rights reserved. • Server: 13:34:19 UTC