CIRT.GY | SolarWinds Security Advisory (July 29th, 2025)

SolarWinds Security Advisory (July 29th, 2025)

Ref# ADV2025_234 | Date: Jul 29th 2025

SolarWinds has published a security advisory highlighting vulnerabilities in the following product on July 24th, 2025. It is recommended that you take the necessary precautions by ensuring your products are always updated.

SolarWinds Observability Self-Hosted – version SWOSH 2025.2 and prior

For more information on this update, you can follow these URLs:

SolarWinds Observability Self-Hosted Deserialization of Untrusted Data Local Privilege Escalation Vulnerability (CVE-2025-26397)

SolarWinds Security Vulnerabilities

The Guyana National CIRT recommends that users and administrators review this update and apply it where necessary.

PDF Download: SolarWinds Security Advisory

References

SolarWinds Security Vulnerabilities. (July 24th, 2025). Retrieved from SolarWinds. https://www.solarwinds.com/trust-center/security-advisories

SolarWinds Security Advisory. (July 29th, 2025). Retrieved from Canadian Centre for Cyber Security. https://www.cyber.gc.ca/en/alerts-advisories/solarwinds-security-advisory-av25-462