CVE-2025-26396

Name of the Vulnerable Software and Affected Versions SolarWinds Dameware Mini Remote Control versions prior to 12.3.2

Description The issue is related to incorrect permissions in the SolarWinds Dameware Mini Remote Control Service, which can allow an attacker to escalate privileges locally. This vulnerability requires local access and a valid low-privilege account to be susceptible.

Recommendations For versions prior to 12.3.2, update to version 12.3.2 immediately to resolve the issue. As a temporary workaround, consider restricting access to the service to minimize the risk of exploitation.