CISA Alert: SolarWinds Web Help Desk Patch Deadline Today
CISA sets strict March 12, 2026 deadline for federal agencies to patch critical SolarWinds vulnerability exploited by Warlock ransomware.
CISA has set a strict deadline of March 12, 2026, for federal agencies to patch a critical vulnerability in SolarWinds Web Help Desk (CVE-2025-26399). The flaw is reportedly being exploited by the "Warlock" ransomware crew.
Expanding KEV Catalog
Additionally, vulnerabilities in Ivanti Endpoint Manager and Omnissa Workspace One have been added to the Known Exploited Vulnerabilities (KEV) catalog. CISA's move underscores the increasing speed at which ransomware groups are leveraging N-day vulnerabilities to breach enterprise perimeters.
IT administrators are urged to verify their patch levels immediately to avoid exposure to ongoing campaigns.
Enhance Your Privacy
Prevent data leaks during vulnerability remediation with our advanced masking tools.
Join 50,000+ Developers
Stay ahead with one high-signal tech briefing every morning.