4 matches found
CVE-2022-29848
In Progress Ipswitch WhatsUp Gold 17.0.0 through 21.1.1, and 22.0.0, it is possible for an authenticated user to invoke an API transaction that would allow them to read sensitive operating-system attributes from a host that is accessible by the WhatsUp Gold system...
WhatsUp Gold Credentials Dump
This module exports and decrypts credentials from WhatsUp Gold to a CSV file; it is intended as a post-exploitation module for Windows hosts with WhatsUp Gold installed. The module has been tested on and can successfully decrypt credentials from WhatsUp versions 11.0 to the latest 22.x. Extracted...
CVE-2022-29848
creationtimestamp| type| source ---|---|--- 2022-05-11 22:40:35+00:00| seen| https://t.me/cibsecurity/42429 2023-03-17 21:59:16+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/post/windows/gather/credentials/whatsupgoldcredentialdump.rb 2025-02-06 03:13:45+00:00|...
CVE-2022-29848
CVE-2022-29848 affects Progress WhatsUp Gold 17.0.0–21.1.1 and 22.0.0. An authenticated user can invoke an API transaction that enables reading sensitive operating-system attributes from a host accessible by the WhatsUp Gold system. The Red Hat, CVE, and related references corroborate the issue a...