Lucene search
+L

4 matches found

redhatcve
redhatcve
added 2025/05/22 10:47 p.m.19 views

CVE-2022-29845

In Progress Ipswitch WhatsUp Gold 21.1.0 through 21.1.1, and 22.0.0, it is possible for an authenticated user to invoke an API transaction that would allow them to read the contents of a local file...

6.5CVSS6.4AI score0.03914EPSS
Exploits0References1
metasploit
metasploit
added 2023/03/18 7:52 p.m.533 views

WhatsUp Gold Credentials Dump

This module exports and decrypts credentials from WhatsUp Gold to a CSV file; it is intended as a post-exploitation module for Windows hosts with WhatsUp Gold installed. The module has been tested on and can successfully decrypt credentials from WhatsUp versions 11.0 to the latest 22.x. Extracted...

6.3AI score
Exploits0
circl
circl
added 2022/05/11 10:40 p.m.19 views

CVE-2022-29845

creationtimestamp| type| source ---|---|--- 2022-05-11 22:40:46+00:00| seen| https://t.me/cibsecurity/42439 2023-03-17 21:59:16+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/post/windows/gather/credentials/whatsupgoldcredentialdump.rb 2025-02-06 03:13:45+00:00|...

6.5CVSS6.4AI score0.03914EPSS
Exploits0References2
cve
cve
added 2022/05/11 5:55 p.m.573 views

CVE-2022-29845

Summary: CVE-2022-29845 affects Progress Ipswitch WhatsUp Gold versions 21.1.0–21.1.1 and 22.0.0. An authenticated user can trigger an API transaction to read the contents of a local file. The Red Hat and CVE CN/CZ records corroborate this issue with the same description. The Metasploit entry sho...

6.5CVSS6.3AI score0.03914EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder