daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update CVE-2024-28987.yaml

patch-11
Ritik Chaddha 2024-09-05 08:37:45 +04:00 committed by GitHub
parent ccbb4c4ee7
commit f1d9ae933c
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 3 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
http/cves/2024/CVE-2024-28987.yaml
View File

@ -1,7 +1,7 @@
id: CVE-2024-28987
info:
name: SolarWinds Web Help Desk - Hardcoded Credential Vulnerability
name: SolarWinds Web Help Desk - Hardcoded Credential
author: iamnoooob,rootxharsh,pdresearch
severity: critical
description: |
@ -9,6 +9,7 @@ info:
reference:
- https://support.solarwinds.com/SuccessCenter/s/article/SolarWinds-Web-Help-Desk-12-8-3-Hotfix-2
- https://www.solarwinds.com/trust-center/security-advisories/cve-2024-28987
- https://nvd.nist.gov/vuln/detail/CVE-2024-28987
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
cvss-score: 9.1
@ -20,7 +21,7 @@ info:
verified: true
max-request: 1
shodan-query: http.favicon.hash:1895809524
tags: cve,cve2024,info-leak.solarwinds,web,help-desk
tags: cve,cve2024,exposure,solarwinds,help-desk
variables:
username: "helpdeskIntegrationUser"