CVE-2026-28301
Awaiting Analysis Awaiting Analysis - Queue
Open Redirect Vulnerability in SolarWinds Platform

Publication date: 2026-06-09

Last updated on: 2026-06-09

Assigner: SolarWinds

Description
A vulnerability in which an attacker can provide a crafted external URL that may redirect a user to an unintended website.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-09
Last Modified
2026-06-09
Generated
2026-06-10
AI Q&A
2026-06-09
EPSS Evaluated
N/A
NVD
CVE-2026-28301
EUVD
EUVD-2026-35451
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
solarwinds observability_self_hosted to 2026.2 (exc)
solarwinds observability_self_hosted 2026.2
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-601 The web application accepts a user-controlled input that specifies a link to an external site, and uses that link in a redirect.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

CVE-2026-28301 is an open redirect vulnerability in SolarWinds Observability Self-Hosted versions 2026.1.1 and below.

This vulnerability allows an attacker to craft a malicious external URL that may redirect a user to an unintended website.

The attacker can exploit this by providing a specially crafted URL that causes the system to redirect users without their knowledge or consent.

Impact Analysis

The vulnerability can lead to users being redirected to unintended and potentially malicious websites.

This can result in a high confidentiality impact, as users might be exposed to phishing attacks or other malicious content.

However, the vulnerability does not impact the integrity or availability of the system.

Mitigation Strategies

To mitigate CVE-2026-28301, it is recommended to upgrade SolarWinds Observability Self-Hosted to version 2026.2 or later, where the vulnerability is resolved.

Additional mitigation steps include maintaining updated software with all necessary hotfixes and service packs, segregating the SolarWinds Platform database on a dedicated SQL instance, and isolating the web console server from default websites or application pools to reduce exposure.

Avoid exposing the SolarWinds Platform website on the public internet. If outbound internet access is necessary, implement strict allow lists.

Disable unnecessary ports, protocols, and services, especially restricting port 5671 to communication only between SolarWinds servers.

Implement proper network segmentation, firewall configurations, and layered security controls such as application load balancers and strict firewall rules.

Segregate web servers used for console access to reduce the attack surface on primary polling engines and minimize third-party software installations on SolarWinds servers.

Compliance Impact

CVE-2026-28301 is an open redirect vulnerability that allows attackers to redirect users to unintended websites, potentially exposing users to malicious sites. This can lead to confidentiality breaches, as indicated by the high confidentiality impact in the CVSS score.

Such vulnerabilities can affect compliance with standards like GDPR and HIPAA, which require protection of user data and prevention of unauthorized data exposure or phishing attacks. An attacker redirecting users to malicious sites could lead to unauthorized data collection or compromise of personal information, thereby violating these regulations.

Mitigating this vulnerability by applying the fixed version (2026.2) and following recommended secure configuration practices helps maintain compliance by reducing the risk of data exposure and unauthorized access.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-28301. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart