Lucene search
K

4 matches found

OSV
OSV
added 2024/06/25 9:16 p.m.4 views

CVE-2024-5019

In WhatsUp Gold versions released before 2023.1.3, an unauthenticated Arbitrary File Read issue exists in Wug.UI.Areas.Wug.Controllers.SessionController.CachedCSS. This vulnerability allows reading of any file with iisapppool\NmConsole privileges...

7.5CVSS5.8AI score0.00771EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/06/25 8:29 p.m.32 views

CVE-2024-5019 WhatsUp Gold LoadCSSUsingBasePath Directory Traversal Information Disclosure Vulnerability

In WhatsUp Gold versions released before 2023.1.3, an unauthenticated Arbitrary File Read issue exists in Wug.UI.Areas.Wug.Controllers.SessionController.CachedCSS. This vulnerability allows reading of any file with iisapppool\NmConsole privileges...

5.3CVSS0.00771EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/06/25 8:29 p.m.19 views

CVE-2024-5019 WhatsUp Gold LoadCSSUsingBasePath Directory Traversal Information Disclosure Vulnerability

In WhatsUp Gold versions released before 2023.1.3, an unauthenticated Arbitrary File Read issue exists in Wug.UI.Areas.Wug.Controllers.SessionController.CachedCSS. This vulnerability allows reading of any file with iisapppool\NmConsole privileges...

5.3CVSS7.1AI score0.00771EPSS
Exploits0References2
CVE
CVE
added 2024/06/25 8:29 p.m.51 views

CVE-2024-5019

CVE-2024-5019 relates to Progress/WhatsUp Gold prior to version 2023.1.3. The vulnerability is an unauthenticated Arbitrary File Read in the Wug.UI.Areas.Wug.Controllers.SessionController.CachedCSS, allowing reading of files with the iisapppool\NmConsole privileges. The affected software is Whats...

7.5CVSS6.2AI score0.00771EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder