Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

CISA KEV remediation deadline for SolarWinds WHD CVE-2025-40551

Public Sector Action
First reported
Last updated
Happening score
H score 49
1 unique sources, 1 articles

Summary

Hide ▲

CISA added CVE-2025-40551 in SolarWinds Web Help Desk to the KEV catalog and imposed federal remediation deadlines, turning a newly exploited flaw into a compliance requirement for FCEB agencies. The vulnerability can enable unauthenticated remote code execution, which raises the risk of compromise across affected government systems. SolarWinds released fixes for the issue in WHD version 2026.1, alongside several related CVEs. FCEB agencies must meet the deadline under BOD 22-01 or remain out of compliance.

Related Happenings

Microsoft SharePoint remote code execution (CVE-2026-45659)

Vulnerability
First: 26.05.2026 14:49 Last: 26.05.2026 14:49 Sources 1

About this happening: **Microsoft SharePoint** **CVE-2026-45659** is a **remote code execution** vulnerability that lets an **authenticated attacker** with **Site Member** permissions run code over the...

Open Happening

Digital Knowledge KnowledgeDeliver ViewState deserialization RCE (CVE-2026-5426)

Vulnerability
First: 26.05.2026 08:19 Last: 26.05.2026 08:19 Sources 1

About this happening: A **now-patched** **CVE-2026-5426** in **Digital Knowledge KnowledgeDeliver** was exploited as a **zero-day**, exposing affected LMS deployments to **unauthenticated remote code e...

Latest development: 26.05.2026 23:07

In **late 2025**, attackers used the flaw as a **zero-day** against a **KnowledgeDeliver server** to inject a malicious script before escalating to signed **ViewState** payloads and web-shell deployment.

Open Happening

Ghost CMS CVE-2026-26980 ClickFix campaign

Campaign
First: 24.05.2026 17:12 Last: 24.05.2026 17:12 Sources 1

About this happening: A **large-scale campaign** is exploiting **CVE-2026-26980** in **Ghost CMS** to plant malicious JavaScript and drive **ClickFix** lure pages, putting exposed sites and their visit...

Open Happening

Windows BitLocker YellowKey security feature bypass (CVE-2026-45585)

Vulnerability
First: 20.05.2026 11:28 Last: 20.05.2026 11:28 Sources 1

About this happening: **CVE-2026-45585** is a **BitLocker security feature bypass** affecting **Windows 11 26H1/24H2/25H2** and **Windows Server 2025**, and Microsoft has already issued **mitigations**...

Open Happening

Windows cldflt.sys privilege escalation (CVE-2020-17103)

Vulnerability
First: 18.05.2026 01:30 Last: 18.05.2026 01:30 Sources 1

About this happening: A public **MiniPlasma** proof-of-concept has renewed concern around the **Windows cldflt.sys Cloud Filter driver** because it can elevate a **standard user** to **SYSTEM** on **fu...

Open Happening

Timeline

  1. 04.02.2026 07:50 2 articles · 3mo ago

    CISA adds SolarWinds WHD CVE-2025-40551 to KEV and sets federal deadlines

    Legal Policy Action Update

    CISA added CVE-2025-40551 in SolarWinds Web Help Desk to the Known Exploited Vulnerabilities catalog after classifying it as actively exploited, warned that the unauthenticated deserialization flaw could enable remote code execution on the host machine, and required Federal Civilian Executive Branch agencies to remediate CVE-2025-40551 by February 6, 2026 and the remaining WHD fixes by February 24, 2026 under BOD 22-01.

    Show sources
    Open in new tab