Mitigation Instructions for CVE-2024-28987
Subject: Mitigating CVE-2024-28987: Hardcoded Credentials Vulnerability in SolarWinds Web Help Desk
1 min read
CyRisk Vulnerability Management Team : Feb 27, 2024 12:08:21 PM
TECH STACK: Apache HTTP Server
DATE(S) ISSUED: 02/10/2023
NVD LAST MODIFIED: 11/02/2023
CRITICALITY: CRITICAL
OVERVIEW: This advisory alerts to the critical risk associated with running unsupported versions of Apache HTTP Server, specifically versions 2.1.x through 2.2.x. These versions have reached End of Life (EOL) and are no longer receiving security updates or patches from the vendor. Running unsupported software increases the vulnerability of your systems to security breaches and attacks due to unpatched vulnerabilities.
VULNERABILITY DETAILS:
SOLUTION/MITIGATION:
ADDITIONAL INFORMATION:
VERIFICATION:
ACTION ITEMS:
Failure to upgrade from these unsupported versions exposes your infrastructure to significant security risks. Immediate action to upgrade to supported versions will help safeguard your systems against potential vulnerabilities and ensure the continued security of your network environment.
Subject: Mitigating CVE-2024-28987: Hardcoded Credentials Vulnerability in SolarWinds Web Help Desk
Subject: Mitigating CVE-2017-1000486: Remote Code Execution Vulnerability in PrimeTek PrimeFaces
Subject: Mitigating Vulnerability in Unsupported Drupal 8.x