Progress WhatsUp Gold < 23.1.3 Multiple Vulnerabilities (000258130)

The version of Progress WhatsUp Gold installed on the remote host is prior to 23.1.3. It is, therefore, affected by multiple vulnerabilities as referenced in the 000258130 advisory, including: - In WhatsUp Gold versions released before 2023.1.3, a Remote Code Execution issue exists in Progress...

CVE-2024-4883

creationtimestamp| type| source ---|---|--- 2024-07-11 04:35:45+00:00| published-proof-of-concept| Telegram/FUryBaeTd16IZBI23kcNzYjlRgHXorESHpEaaZvMk8bEI 2024-07-11 07:55:58+00:00| published-proof-of-concept| Telegram/E0K4SacbBo7vvNgrN7HUJjKIuPNHN1egbc3qXVTBTE2Hg 2024-08-09 09:36:15+00:00|...

CVE-2024-4883

In WhatsUp Gold versions released before 2023.1.3, a Remote Code Execution issue exists in Progress WhatsUp Gold. This vulnerability allows an unauthenticated attacker to achieve the RCE as a service account through NmApi.exe...

CVE-2024-4883

In WhatsUp Gold versions released before 2023.1.3, a Remote Code Execution issue exists in Progress WhatsUp Gold. This vulnerability allows an unauthenticated attacker to achieve the RCE as a service account through NmApi.exe...

CVE-2024-4883

Progress WhatsUp Gold is affected pre-2023.1.3 by an unauthenticated remote code execution via NmApi.exe (CVE-2024-4883). The root cause involves improper handling/validation in the NmApi surface enabling code execution as the service account. Impact is high (RCE, remote compromise). A PoC/exploi...

CVE-2024-4883 WhatsUp Gold WriteDataFile Directory Traversal Remote Code Execution Vulnerability

In WhatsUp Gold versions released before 2023.1.3, a Remote Code Execution issue exists in Progress WhatsUp Gold. This vulnerability allows an unauthenticated attacker to achieve the RCE as a service account through NmApi.exe...