4 matches found
CVE-2023-6368
In WhatsUp Gold versions released before 2023.1, an API endpoint was found to be missing an authentication mechanism. It is possible for an unauthenticated attacker to enumerate information related to a registered device being monitored by WhatsUp Gold...
Progress WhatsUp Gold < 23.1 Multiple Vulnerabilities
According to its self-reported version number, the Progress WhatsUp Gold application installed on the remote host is prior to 23.1. It is, therefore, affected by multiple vulnerabilities: - In WhatsUp Gold versions released before 2023.1, a stored cross-site scripting XSS vulnerability has been...
CVE-2023-6368
CVE-2023-6368 affects Progress WhatsUp Gold versions prior to 2023.1, where an API endpoint is missing authentication. This allows an unauthenticated attacker to enumerate information about a registered device being monitored. Connected sources also show an associated advisory that generally reco...
CVE-2023-6368 WhatsUp Gold Unauthenticated Access to an API Endpoint
In WhatsUp Gold versions released before 2023.1, an API endpoint was found to be missing an authentication mechanism. It is possible for an unauthenticated attacker to enumerate information related to a registered device being monitored by WhatsUp Gold...