Whatsup Gold Security Vulnerabilities and Issues — Whatsup Gold CVE List

Lucene search

ProgressWhatsup Gold

4 matches found

CVE•added 2018/05/01 4:29 p.m.•46 views

CVE-2018-8939

An SSRF issue was discovered in NmAPI.exe in Ipswitch WhatsUp Gold before 2018 (18.0). Malicious actors can submit specially crafted requests via the NmAPI executable to (1) gain unauthorized access to the WhatsUp Gold system, (2) obtain information about the WhatsUp Gold system, or (3) execute rem...

9.8CVSS9.4AI score0.00073EPSS

CVE•added 2018/01/24 3:29 p.m.•29 views

CVE-2018-5777

An issue was discovered in Ipswitch WhatsUp Gold before 2017 Plus SP1 (17.1.1). Remote clients can take advantage of a misconfiguration in the TFTP server that could allow attackers to execute arbitrary commands on the TFTP server via unspecified vectors.

9.8CVSS9.7AI score0.00101EPSS

CVE•added 2018/05/01 4:29 p.m.•29 views

CVE-2018-8938

A Code Injection issue was discovered in DlgSelectMibFile.asp in Ipswitch WhatsUp Gold before 2018 (18.0). Malicious actors can inject a specially crafted SNMP MIB file that could allow them to execute arbitrary commands and code on the WhatsUp Gold server.

9.8CVSS9.8AI score0.00214EPSS

CVE•added 2018/01/24 3:29 p.m.•28 views

CVE-2018-5778

An issue was discovered in Ipswitch WhatsUp Gold before 2017 Plus SP1 (17.1.1). Multiple SQL injection vulnerabilities are present in the legacy .ASP pages, which could allow attackers to execute arbitrary SQL commands via unspecified vectors.

9.8CVSS10AI score0.0011EPSS