Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2024/05/31 12:0 a.m.19 views

Progress WhatsUp Gold < 23.1.2 Multiple Vulnerabilities (000255428)

The version of Progress WhatsUp Gold installed on the remote host is prior to 23.1.2. It is, therefore, affected by multiple vulnerabilities as referenced in the 000255428 advisory. - In WhatsUp Gold versions released before 2023.1.2, a blind SSRF vulnerability exists in Whatsup Gold's...

5.4CVSS5.9AI score0.00426EPSS
Exploits0References3
OSV
OSV
added 2024/05/14 9:15 p.m.6 views

CVE-2024-4562

In WhatsUp Gold versions released before 2023.1.2 , an SSRF vulnerability exists in Whatsup Gold's Issue exists in the HTTP Monitoring functionality. Due to the lack of proper authorization, any authenticated user can access the HTTP monitoring functionality, what leads to the Server Side Request...

5.4CVSS5.8AI score0.00378EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/05/14 8:36 p.m.15 views

CVE-2024-4562 WhatsUp Gold Server-Side Request Forgery Information Disclosure Vulnerability via HttpMonitorSettings

In WhatsUp Gold versions released before 2023.1.2 , an SSRF vulnerability exists in Whatsup Gold's Issue exists in the HTTP Monitoring functionality. Due to the lack of proper authorization, any authenticated user can access the HTTP monitoring functionality, what leads to the Server Side Request...

5.4CVSS5.6AI score0.00378EPSS
Exploits0References2
CVE
CVE
added 2024/05/14 8:36 p.m.35 views

CVE-2024-4562

CVE-2024-4562 affects Progress WhatsUp Gold versions prior to 2023.1.2. A Server-Side Request Forgery exists in the HTTP Monitoring functionality due to insufficient authorization, allowing an authenticated user to trigger SSRF. Related advisories/XDR reports (ZDI-24-516, Nessus plugin 198215) co...

5.4CVSS5.4AI score0.00378EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2024/05/14 8:36 p.m.11 views

CVE-2024-4562 WhatsUp Gold Server-Side Request Forgery Information Disclosure Vulnerability via HttpMonitorSettings

In WhatsUp Gold versions released before 2023.1.2 , an SSRF vulnerability exists in Whatsup Gold's Issue exists in the HTTP Monitoring functionality. Due to the lack of proper authorization, any authenticated user can access the HTTP monitoring functionality, what leads to the Server Side Request...

5.4CVSS6.7AI score0.00378EPSS
Exploits0References2
Rows per page
Query Builder